Pen Test Metrics
Data from the AppSec trenches

What’s your current confidence level in your AppSec program? Are you tracking any pen test metrics? What are you getting from your pen test metrics?