Building an Application Security Program

Building an Application Security Program

via YouTube Direct link

Disclaimer

2 of 16

2 of 16

Disclaimer

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Building an Application Security Program

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Intro
  2. 2 Disclaimer
  3. 3 The path of least resistance
  4. 4 AppSec Objective The goal of Application Security is to reduce the risks within an application!
  5. 5 Methods of AppSec
  6. 6 Static Analysis (Code Testing)
  7. 7 Dynamic Analysis The objective of performing a dynamic test is to attempt to verify the effectiveness of the secure coding testing This verification step is necessary in order to
  8. 8 Components of AppSec Web Applications
  9. 9 Manual Verification The objective of performing a final manual test is to smoke- test the final product and ensure that any anomalies discovered during prior assessment phases are verified to be clos…
  10. 10 Kaizen: Continuous Improvement
  11. 11 Additional Considerations
  12. 12 Start Simple, Start Small The vast majority of companies simply do not understand what many of us (Security People) do.
  13. 13 Why Policies & Standards Matter . During two phases, AppSec will have it's greatest influence: . Project Definition . System Overview Your greatest ability to influence a project starts here - the bu…
  14. 14 Align AppSec with SDLC
  15. 15 AppSec Program Expansion Considerations: . If you do not have a formal Quality Assurance Program, stand one up!
  16. 16 Trust but Verify ...

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.