Cybersecurity assessment methods - support study of Gdańsk University of Technology
Padi Steger
Von: Rafał Leszczyna <r...@zie.pg.gda.pl>
Gesendet:
Montag, 22. Mai 2023, 21:03
An: padi....@owasp.org <padi....@owasp.org>
Betreff:
Cybersecurity assessment methods - why aren't they used?
Dear Sir,
would it be possible to share the following survey with members of the OWASP Switzerland Chapter?
https://forms.gle/T9pzJPhVr1fdxovZ7
The survey concerns the use of cybersecurity assessment methods. It is dedicated to anyone familiar with any of the methods: OWASP Security Testing Guide, OSSTMM, NIST SP 800-53A, PCI-DSS, ISSAF, PTES or NESCOR.
A recent survey of over 30 cybersecurity assessment methods [ link] proposed by scientific communities revealed that their adoption in operational environments was extremely scarce. At the same time, the frameworks (such as the OWASP Testing Guide) developed in non-scientific environments have met a broad reception. The survey aims to find the answer to the question of what contributed to this situation.
The survey is anonymous. It contains 15 questions. It shouldn't take more than 15 minutes to answer them.
Responding to all questions would be optimal, but also answering a selection of them would be very appreciated.
If you have any questions, please contact me ( r...@zie.pg.edu.pl). I would also appreciate any suggestions on other contacts that I could approach with a similar query.
Kind regards,
Rafal Leszczyna
Rafał Leszczyna
Associate professor
Faculty of Management and
Economics
Gdańsk University of Technology
G. Narutowicza 11/12, 80-233
Gdańsk, Poland