- PCI DSS: https://www.pcisecuritystandards.org/pci_security/
- Microsoft SDL: https://www.microsoft.com/en-us/sdl
- SAMM: https://www.owasp.org/index.php/OWASP_SAMM_Project
- flawfinder: https://www.dwheeler.com/flawfinder/
- FindSecbugs: https://find-sec-bugs.github.io/
- OWASP dependency Check: https://www.owasp.org/index.php/OWASP_Dependency_Check
- NIST SP 800-50 Building an Information Technology Security Awareness and Training Program: https://nvlpubs.nist.gov/nistpubs/legacy/sp/nistspecialpublication800-50.pdf
- Best Practices for implementing a Security Awareness Program: https://www.pcisecuritystandards.org/documents/PCI_DSS_V1.0_Best_Practices_for_Implementing_Security_Awareness_Program.pdf
- Spring Security: https://projects.spring.io/spring-security/ ...
Further reading
Get Hands-On Security in DevOps now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.