- OWASP Secure Application Design: https://www.owasp.org/index.php/OWASP_Secure_Application_Design_Project
- Microsoft MSDN Security Checklist: Architecture and Design Review: https://msdn.microsoft.com/en-us/library/ff647464.aspx
- SANS Web Application Security Design Checklist: https://www.sans.org/reading-room/whitepapers/securecode/security-checklist-web-application-design-1389
- Microsoft Design Guidelines for Secure Web Applications: https://msdn.microsoft.com/en-us/library/ff648647.aspx
- Core Security Patterns: http://coresecuritypatterns.com/downloads/patterns.pdf
- OWASP ASVS Assessment Tool: https://www.owasp.org/index.php/OWASP_ASVS_Assessment_tool
- Microsoft's guide for data classification (PDF): https://download.microsoft.com/download/0/A/3/0A3BE969-85C5-4DD2-83B6-366AA71D1FE3/Data-Classification-for-Cloud-Readiness.pdf ...
Further reading
Get Hands-On Security in DevOps now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.