Book description
In the race to remain competitive, development teams in many companies are under tremendous pressure to create software on tight deadlines. And in most cases, that means dealing with security bugs only after software is released. But offensive testing and incident response are poor substitutes for good code, strong architecture, and threat-based design.
In this ebook, April C. Wright—security risk and compliance program advisor for a Fortune 15 company—teaches InfoSec professionals how to promote security as an integral part of an organization’s software development life cycle (SDLC). You’ll learn how to analyze existing development processes, gain insight into how developers and other stakeholders view software development, receive practical advice for including secure practices throughout the lifecycle, and learn how to track performance and success of your program.
- Get guidelines for evaluating your SDLC and rebuilding your development program
- Understand how developers, project managers, business execs, customers, and other key stakeholders each approach software development
- Gain active stakeholder participation and management support for SDLC security improvements
- Work directly with stakeholders to explain secure development, and push for change through policy and compliance
- Increase software security awareness by integrating development teams with security teams
- Get started through sample checklists and planning documents
Table of contents
Product information
- Title: Fixing an Insecure Software Life Cycle
- Author(s):
- Release date: May 2018
- Publisher(s): O'Reilly Media, Inc.
- ISBN: 9781492028215
You might also like
book
Design and Analysis of Experiments by Douglas Montgomery: A Supplement for Using JMP
With a growing number of scientists and engineers using JMP software for design of experiments, there …
book
Security and Privacy in Cyber-Physical Systems
Written by a team of experts at the forefront of the cyber-physical systems (CPS) revolution, this …
book
Future-Proofing You
With the right mindset and insight, anyone can become a millionaire. Are you tired of just …
book
Secure and Resilient Software Development
Although many software books highlight open problems in secure software development, few provide easily actionable, ground-level …