Completed
Disclaimer
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
Building an Application Security Program
Automatically move to the next video in the Classroom when playback concludes
- 1 Intro
- 2 Disclaimer
- 3 The path of least resistance
- 4 AppSec Objective The goal of Application Security is to reduce the risks within an application!
- 5 Methods of AppSec
- 6 Static Analysis (Code Testing)
- 7 Dynamic Analysis The objective of performing a dynamic test is to attempt to verify the effectiveness of the secure coding testing This verification step is necessary in order to
- 8 Components of AppSec Web Applications
- 9 Manual Verification The objective of performing a final manual test is to smoke- test the final product and ensure that any anomalies discovered during prior assessment phases are verified to be clos…
- 10 Kaizen: Continuous Improvement
- 11 Additional Considerations
- 12 Start Simple, Start Small The vast majority of companies simply do not understand what many of us (Security People) do.
- 13 Why Policies & Standards Matter . During two phases, AppSec will have it's greatest influence: . Project Definition . System Overview Your greatest ability to influence a project starts here - the bu…
- 14 Align AppSec with SDLC
- 15 AppSec Program Expansion Considerations: . If you do not have a formal Quality Assurance Program, stand one up!
- 16 Trust but Verify ...