Secure, Resilient, and Agile Software Development
Autor Mark Merkowen Limba Engleză Paperback – 21 ian 2023
- AppSec architects and program managers in information security organizations
- Enterprise architecture teams with application development focus
- Scrum teams
- DevOps teams
- Product owners and their managers
- Project managers
- Application security auditors
With a detailed look at Agile and Scrum software development methodologies, this book explains how security controls need to change in light of an entirely new paradigm on how software is developed. It focuses on ways to educate everyone who has a hand in any software development project with appropriate and practical skills to Build Security In. After covering foundational and fundamental principles for secure application design, this book dives into concepts, techniques, and design goals to meet well-understood acceptance criteria on features an application must implement. It also explains how the design sprint is adapted for proper consideration of security as well as defensive programming techniques. The book concludes with a look at white box application analysis and sprint-based activities to improve the security and quality of software under development.
| Toate formatele și edițiile | Preț | Express |
|---|---|---|
| Paperback (1) | 246.69 lei 6-8 săpt. | |
| CRC Press – 21 ian 2023 | 246.69 lei 6-8 săpt. | |
| Hardback (1) | 392.81 lei 6-8 săpt. | |
| CRC Press – 9 dec 2019 | 392.81 lei 6-8 săpt. |
Preț: 246.69 lei
Preț vechi: 356.16 lei
-31% Nou
Puncte Express: 370
Preț estimativ în valută:
47.23€ • 49.18$ • 39.19£
47.23€ • 49.18$ • 39.19£
Carte tipărită la comandă
Livrare economică 14-28 februarie
Preluare comenzi: 021 569.72.76
Specificații
ISBN-13: 9781032475011
ISBN-10: 1032475013
Pagini: 238
Ilustrații: 25
Dimensiuni: 156 x 234 x 17 mm
Greutate: 0.34 kg
Ediția:1
Editura: CRC Press
Colecția Auerbach Publications
ISBN-10: 1032475013
Pagini: 238
Ilustrații: 25
Dimensiuni: 156 x 234 x 17 mm
Greutate: 0.34 kg
Ediția:1
Editura: CRC Press
Colecția Auerbach Publications
V-ar putea interesa
-
-27%Preț: 289.30 lei397.54 lei -
Anti-Hacker Tool Kit, Fourth EditionMike Shema-36%Preț: 267.44 lei419.14 lei -
-20%Preț: 118.04 lei147.55 lei -
On the Foundations of ComputingGiuseppe Primiero-22%Preț: 337.41 lei431.27 lei -
Algorithms Are Not EnoughHerbert L. Roitblat-20%Preț: 216.06 lei270.07 lei -
Blockchain Chicken FarmXiaowei WangPreț: 87.68 lei -
-31%Preț: 1036.52 lei1508.17 lei -
Possible Minds: Twenty-Five Ways of Looking at AIJohn Brockman-34%Preț: 75.23 lei113.68 lei -
-20%Preț: 441.30 lei551.63 lei -
The Zynq BookLouise H CrockettPreț: 273.33 lei -
Algorithms Illuminated (Part 2)Tim Roughgarden-20%Preț: 91.14 lei113.93 lei -
Database SystemsRamez Elmasri-20%Preț: 486.43 lei608.04 lei -
Cyber Fraud: Tactics, Techniques and ProceduresRick Howard-29%Preț: 707.16 lei1001.31 lei -
The Rationalist's Guide to the GalaxyTom Chivers-38%Preț: 42.04 lei68.27 lei -
Problem Solving with Algorithms and Data Structures Using PythonBradley N. MillerPreț: 362.86 lei -
A Guide to Kernel Exploitation: Attacking the CoreEnrico Perla-20%Preț: 213.66 lei267.08 lei -
-20%Preț: 132.42 lei165.52 lei -
-11%Preț: 225.36 lei254.12 lei -
Computer Attack & CyberterrorismClay Wilson-38%Preț: 266.21 lei431.70 lei -
The Psychology of Cyber CrimeGrainne Kirwan-20%Preț: 1190.20 lei1487.75 lei -
tmux 2Brian P. Hogan-20%Preț: 93.09 lei116.36 lei -
The Revolutionary PhenotypeJean-François GariépyPreț: 116.10 lei -
AdventureJamie LendinoPreț: 120.53 lei -
The Alignment ProblemBrian Christian-40%Preț: 53.81 lei90.29 lei -
Preț: 439.11 lei -
Peeling Design PatternsNarasimha KarumanchiPreț: 296.75 lei -
FUZZY SETS,FUZZY LOGIC,& FUZZY SYS (V6)G J Klir Bo Yuan-20%Preț: 726.57 lei908.21 lei
Public țintă
Professional Practice & DevelopmentNotă biografică
Mark S. Merkow, CISSP, CISM, CSSLP, works at WageWorks in Tempe, Arizona, leading application security architecture and engineering efforts in the office of the CISO. Mark has over 40 years of experience in IT in a variety of roles, including application development, systems analysis and design, security engineering, and security management. Mark holds a Master of Science in Decision and Information Systems from Arizona State University (ASU), a Master of Education in Distance Education from ASU, and a Bachelor of Science in Computer Information Systems from ASU. In addition to his day job, Mark engages in a number of extracurricular activities, including consulting, course development, online course instruction, and book writing. Mark has authored or co-authored 17 books on IT and has been a contributing editor to four others. Mark remains very active in the information security community, working in a variety of volunteer roles for the Phoenix Chapter of (ISC)2®, ISACA®, and OWASP. You can find Mark’s LinkedIn® profile at: linkedin.com/in/markmerkow
Recenzii
Modern software development breaks the old ways of security. This book is practical, actionable, relatable, and most importantly, current. It should be required reading for all Agile and DevOps teams.—Ed Adams, Chief Executive Officer, Security Innovation, Inc.
Modern software development breaks the old ways of security. This book is practical, actionable, relatable, and most importantly, current. It should be required reading for all Agile and DevOps teams.—Ed Adams, Chief Executive Officer, Security Innovation, Inc.
Secure, Resilient, and Agile Software development is in touch with where the modern software development world is today and highlights the importance of security in a DevOps world. Mark captures the essence of how to educate developers and connect with them as Security Champions and the importance of a strong organizational security culture. Education, requirements, secure design principles, threat modeling, defensive programming, testing, code review, tools, and metrics; this book has it all. This book is a reference for those starting new programs, and for established programs that need new ideas.—Chris Romeo, CEO of Security Journey, co-host of the Application Security Podcast
Modern software development breaks the old ways of security. This book is practical, actionable, relatable, and most importantly, current. It should be required reading for all Agile and DevOps teams.—Ed Adams, Chief Executive Officer, Security Innovation, Inc.
Secure, Resilient, and Agile Software development is in touch with where the modern software development world is today and highlights the importance of security in a DevOps world. Mark captures the essence of how to educate developers and connect with them as Security Champions and the importance of a strong organizational security culture. Education, requirements, secure design principles, threat modeling, defensive programming, testing, code review, tools, and metrics; this book has it all. This book is a reference for those starting new programs, and for established programs that need new ideas.—Chris Romeo, CEO of Security Journey, co-host of the Application Security Podcast
Cuprins
Dedication
Contents
Preface
About the Author
Chapter 1: Today’s Software Development Practices Shatter Old Security Practices
Chapter 2: Deconstructing Agile and Scrum
Chapter 3: Learning Is FUNdamental!
Chapter 4: Product Backlog Development—Building Security In
Chapter 5: Secure Design Considerations
Chapter 6: Security in the Design Sprint
Chapter 7: Defensive Programming
Chapter 8: Testing Part 1: Static Code Analysis
Chapter 9: Testing Part 2: Penetration Testing/Dynamic Analysis/IAST/RASP
Chapter 10: Securing DevOps
Chapter 11: Metrics and Models for AppSec Maturity
Chapter 12: Frontiers for AppSec
Chapter 13: AppSec Is a Marathon—Not a Sprint!
Appendix A: Sample Acceptance Criteria for Security Controls
Appendix B: Resources for AppSec
Index
Descriere
This book is written with a contemporary view on securing all types of software development practices or methodologies with in-depth, practical, and accessible advice. It is complete with successful secure, resilient, and agile software development practices that meet or exceed the demands of today’s increasingly digital world.