When talking about app security, the use of RAST tool, substitute any other security control, is a valuable add-on, or it is not valuable at all?

Applications & Platforms Infrastructure+1 more

144 views23 Upvotes4 Comments

Sort by:

IT Governance Consultant in Government2 years ago

To clarify, it seems you are referring to RASP (Runtime Application Self-Protection) tools. RASP tools should be viewed as complementary to other security controls rather than replacements. Typically, they are integrated into the application during the development or deployment phases. The decision to use a RASP tool should be based on a thorough assessment of the application's specific requirements and risk profile.

1 1 Reply

no title2 years ago

thanks for the answer.

Enterprise Security & Risk Management Architect in Insurance (except health)2 years ago

By RAST are you referring to Regression or Risk? There are a couple of RASTs in this space.

1 1 Reply

no title2 years ago

I was referring to RASP.

Content you might like

I’m curious about when cyber insurance underwriting will begin incorporating “machine identity” or non-human identity into its assessments. Specifically, when might we see quota differences based on the use of non-human IAM, IGA, or PAM tools?

Security & GRC

148 views

Is anyone using a 3rd party Microsoft 365 governance tool, such as CoreView or Rencore? Interested in any thoughts about these tools or other similar.

Governance, Risk & Compliance Security & GRC+2 more

Group Director of Information Security in Bankinga month ago

Governance is a broad terminology. What do you want to achieve and what problem are you trying to solve with those tools that you have mentioned? I ask this because Microsoft has got quite a robust governance toolsets built ...read more

2.2k views1 Comment