Enterprise Software Security: A Confluence of Disciplines

Valutazione media 0
( su 0 valutazioni fornite da Goodreads )
 
9780321604118: Enterprise Software Security: A Confluence of Disciplines

STRENGTHEN SOFTWARE SECURITY BY HELPING DEVELOPERS AND SECURITY EXPERTS WORK TOGETHER

 

Traditional approaches to securing software are inadequate. The solution: Bring software engineering and network security teams together in a new, holistic approach to protecting the entire enterprise. Now, four highly respected security experts explain why this “confluence” is so crucial, and show how to implement it in your organization.

 

Writing for all software and security practitioners and leaders, they show how software can play a vital, active role in protecting your organization. You’ll learn how to construct software that actively safeguards sensitive data and business processes and contributes to intrusion detection/response in sophisticated new ways. The authors cover the entire development lifecycle, including project inception, design, implementation, testing, deployment, operation, and maintenance. They also provide a full chapter of advice specifically for Chief Information Security Officers and other enterprise security executives.


Whatever your software security responsibilities, Enterprise Software Security delivers indispensable big-picture guidance–and specific, high-value recommendations you can apply right now.

 

COVERAGE INCLUDES:


· Overcoming common obstacles to collaboration between developers and IT security professionals
· Helping programmers design, write, deploy, and operate more secure software
· Helping network security engineers use application output more effectively
· Organizing a software security team before you’ve even created requirements
· Avoiding the unmanageable complexity and inherent flaws of layered security
· Implementing positive software design practices and identifying security defects in existing designs
· Teaming to improve code reviews, clarify attack scenarios associated with vulnerable code, and validate positive compliance
· Moving beyond pentesting toward more comprehensive security testing
· Integrating your new application with your existing security infrastructure
· “Ruggedizing” DevOps by adding infosec to the relationship between development and operations
· Protecting application security during maintenance

Le informazioni nella sezione "Riassunto" possono far riferimento a edizioni diverse di questo titolo.

About the Author:

Kenneth R. van Wyk is a career security guy, having started with Carnegie Mellon University’s CERT/CC in the late 1980s and subsequently worked for the United States Department of Defense and in several senior technologist roles in the commercial sector. He is the co-author of two popular O’Reilly and Associates books on incident response and secure coding. He now owns and runs KRvW Associates, LLC, a software security consulting and training practice in Virginia, USA.


Mark G. Graff is the CISO of NASDAQ OMX. Formerly the chief cybersecurity strategist at Lawrence Livermore National Laboratory, he has appeared as an expert witness on computer security before Congress and analyzed electronic voting machine software security for the state of California. A past chairman of the International Forum of Incident Response and Security Teams (FIRST), Graff has lectured on risk analysis, the future of cyber security, and privacy before the American Academy for the Advancement of Science, the Federal Communications Commission (FCC), the Pentagon, and many U.S. national security facilities and think tanks.


Dan S. Peters has been involved with security for longer than he had first expected when he stumbled into this field out of curiosity while making a good living as a consultant and a commercial software developer. Many security disciplines are exciting to him, but mobile security has been the most intriguing topic as of late. Before working on this book, Dan repeatedly shared his passion for security in conference presentations and numerous publications.


Diana L. Burley, Ph.D., is an award-winning cyber-security workforce expert who has been honored by the U.S. Federal CIO Council and was named the CISSE 2014 Cybersecurity Educator of the Year. As a professor, researcher, and consultant on IT use and workforce development for nearly 20 years, she passionately promotes a holistic view of cyber security to influence education, policy, and practice from her home in the Washington, D.C., region.

Le informazioni nella sezione "Su questo libro" possono far riferimento a edizioni diverse di questo titolo.

I migliori risultati di ricerca su AbeBooks

1.

Kenneth R. Van Wyk, Dan S. Peters, Mark G. Graf
Editore: Pearson Education (US), United States (2014)
ISBN 10: 0321604113 ISBN 13: 9780321604118
Nuovi Paperback Quantità: 1
Da
The Book Depository
(London, Regno Unito)
Valutazione libreria
[?]

Descrizione libro Pearson Education (US), United States, 2014. Paperback. Condizione libro: New. Language: English . Brand New Book. STRENGTHEN SOFTWARE SECURITY BY HELPING DEVELOPERS AND SECURITY EXPERTS WORK TOGETHER Traditional approaches to securing software are inadequate. The solution: Bring software engineering and network security teams together in a new, holistic approach to protecting the entire enterprise. Now, four highly respected security experts explain why this confluence is so crucial, and show how to implement it in your organization. Writing for all software and security practitioners and leaders, they show how software can play a vital, active role in protecting your organization. You ll learn how to construct software that actively safeguards sensitive data and business processes and contributes to intrusion detection/response in sophisticated new ways. The authors cover the entire development lifecycle, including project inception, design, implementation, testing, deployment, operation, and maintenance. They also provide a full chapter of advice specifically for Chief Information Security Officers and other enterprise security executives. Whatever your software security responsibilities, Enterprise Software Security delivers indispensable big-picture guidance-and specific, high-value recommendations you can apply right now. COVERAGE INCLUDES: * Overcoming common obstacles to collaboration between developers and IT security professionals * Helping programmers design, write, deploy, and operate more secure software * Helping network security engineers use application output more effectively * Organizing a software security team before you ve even created requirements * Avoiding the unmanageable complexity and inherent flaws of layered security * Implementing positive software design practices and identifying security defects in existing designs * Teaming to improve code reviews, clarify attack scenarios associated with vulnerable code, and validate positive compliance * Moving beyond pentesting toward more comprehensive security testing * Integrating your new application with your existing security infrastructure * Ruggedizing DevOps by adding infosec to the relationship between development and operations * Protecting application security during maintenance. Codice libro della libreria AAU9780321604118

Maggiori informazioni su questa libreria | Fare una domanda alla libreria

Compra nuovo
EUR 24,48
Convertire valuta

Aggiungere al carrello

Spese di spedizione: GRATIS
Da: Regno Unito a: U.S.A.
Destinazione, tempi e costi

2.

Kenneth R. van Wyk; Mark G. Graff; Dan S. Peters; Diana L. Burley Ph.D.
ISBN 10: 0321604113 ISBN 13: 9780321604118
Nuovi Quantità: 1
Da
Sharehousegoods
(Milwaukee, WI, U.S.A.)
Valutazione libreria
[?]

Descrizione libro Condizione libro: New. Our Ranking is Your Confidence! Fast Shipping - Safe and Secure Mailer - Our goal is to deliver a better item than what you are hoping for! If not we will make it right!. Codice libro della libreria 1XGDJP0012YM_ns

Maggiori informazioni su questa libreria | Fare una domanda alla libreria

Compra nuovo
EUR 21,68
Convertire valuta

Aggiungere al carrello

Spese di spedizione: EUR 3,39
In U.S.A.
Destinazione, tempi e costi

3.

Kenneth R. Van Wyk, Dan S. Peters, Mark G. Graf
Editore: Pearson Education (US), United States (2014)
ISBN 10: 0321604113 ISBN 13: 9780321604118
Nuovi Paperback Quantità: 1
Da
The Book Depository US
(London, Regno Unito)
Valutazione libreria
[?]

Descrizione libro Pearson Education (US), United States, 2014. Paperback. Condizione libro: New. Language: English . Brand New Book. STRENGTHEN SOFTWARE SECURITY BY HELPING DEVELOPERS AND SECURITY EXPERTS WORK TOGETHER Traditional approaches to securing software are inadequate. The solution: Bring software engineering and network security teams together in a new, holistic approach to protecting the entire enterprise. Now, four highly respected security experts explain why this confluence is so crucial, and show how to implement it in your organization. Writing for all software and security practitioners and leaders, they show how software can play a vital, active role in protecting your organization. You ll learn how to construct software that actively safeguards sensitive data and business processes and contributes to intrusion detection/response in sophisticated new ways. The authors cover the entire development lifecycle, including project inception, design, implementation, testing, deployment, operation, and maintenance. They also provide a full chapter of advice specifically for Chief Information Security Officers and other enterprise security executives. Whatever your software security responsibilities, Enterprise Software Security delivers indispensable big-picture guidance-and specific, high-value recommendations you can apply right now. COVERAGE INCLUDES: * Overcoming common obstacles to collaboration between developers and IT security professionals * Helping programmers design, write, deploy, and operate more secure software * Helping network security engineers use application output more effectively * Organizing a software security team before you ve even created requirements * Avoiding the unmanageable complexity and inherent flaws of layered security * Implementing positive software design practices and identifying security defects in existing designs * Teaming to improve code reviews, clarify attack scenarios associated with vulnerable code, and validate positive compliance * Moving beyond pentesting toward more comprehensive security testing * Integrating your new application with your existing security infrastructure * Ruggedizing DevOps by adding infosec to the relationship between development and operations * Protecting application security during maintenance. Codice libro della libreria AAU9780321604118

Maggiori informazioni su questa libreria | Fare una domanda alla libreria

Compra nuovo
EUR 25,17
Convertire valuta

Aggiungere al carrello

Spese di spedizione: GRATIS
Da: Regno Unito a: U.S.A.
Destinazione, tempi e costi

4.

Kenneth R. van Wyk; Mark G. Graff; Dan S. Peters; Diana L. Burley Ph.D.
ISBN 10: 0321604113 ISBN 13: 9780321604118
Nuovi Quantità: 1
Da
Sharehousegoods
(Milwaukee, WI, U.S.A.)
Valutazione libreria
[?]

Descrizione libro Condizione libro: New. Our Ranking is Your Confidence! Fast Shipping - Safe and Secure Mailer - Our goal is to deliver a better item than what you are hoping for! If not we will make it right!. Codice libro della libreria 1XGDJP0012YM

Maggiori informazioni su questa libreria | Fare una domanda alla libreria

Compra nuovo
EUR 21,83
Convertire valuta

Aggiungere al carrello

Spese di spedizione: EUR 3,39
In U.S.A.
Destinazione, tempi e costi

5.

Kenneth R. van Wyk, Mark G. Graff, Dan S. Peters, Diana L. Burley
Editore: Pearson Education 2014-12-07, Upper Saddle River, N.J. (2014)
ISBN 10: 0321604113 ISBN 13: 9780321604118
Nuovi paperback Quantità: 1
Da
Blackwell's
(Oxford, OX, Regno Unito)
Valutazione libreria
[?]

Descrizione libro Pearson Education 2014-12-07, Upper Saddle River, N.J., 2014. paperback. Condizione libro: New. Codice libro della libreria 9780321604118

Maggiori informazioni su questa libreria | Fare una domanda alla libreria

Compra nuovo
EUR 24,79
Convertire valuta

Aggiungere al carrello

Spese di spedizione: EUR 3,28
Da: Regno Unito a: U.S.A.
Destinazione, tempi e costi

6.

Kenneth R. van Wyk, Dan S. Peters, Mark G. Graf, Diana L. Burley
Editore: Pearson Education (US)
ISBN 10: 0321604113 ISBN 13: 9780321604118
Nuovi Paperback Quantità: 1
Da
THE SAINT BOOKSTORE
(Southport, Regno Unito)
Valutazione libreria
[?]

Descrizione libro Pearson Education (US). Paperback. Condizione libro: new. BRAND NEW, Enterprise Software Security: A Confluence of Disciplines, Kenneth R. van Wyk, Dan S. Peters, Mark G. Graf, Diana L. Burley, STRENGTHEN SOFTWARE SECURITY BY HELPING DEVELOPERS AND SECURITY EXPERTS WORK TOGETHER Traditional approaches to securing software are inadequate. The solution: Bring software engineering and network security teams together in a new, holistic approach to protecting the entire enterprise. Now, four highly respected security experts explain why this "confluence" is so crucial, and show how to implement it in your organization. Writing for all software and security practitioners and leaders, they show how software can play a vital, active role in protecting your organization. You'll learn how to construct software that actively safeguards sensitive data and business processes and contributes to intrusion detection/response in sophisticated new ways. The authors cover the entire development lifecycle, including project inception, design, implementation, testing, deployment, operation, and maintenance. They also provide a full chapter of advice specifically for Chief Information Security Officers and other enterprise security executives. Whatever your software security responsibilities, Enterprise Software Security delivers indispensable big-picture guidance-and specific, high-value recommendations you can apply right now. COVERAGE INCLUDES: * Overcoming common obstacles to collaboration between developers and IT security professionals * Helping programmers design, write, deploy, and operate more secure software * Helping network security engineers use application output more effectively * Organizing a software security team before you've even created requirements * Avoiding the unmanageable complexity and inherent flaws of layered security * Implementing positive software design practices and identifying security defects in existing designs * Teaming to improve code reviews, clarify attack scenarios associated with vulnerable code, and validate positive compliance * Moving beyond pentesting toward more comprehensive security testing * Integrating your new application with your existing security infrastructure * "Ruggedizing" DevOps by adding infosec to the relationship between development and operations * Protecting application security during maintenance. Codice libro della libreria B9780321604118

Maggiori informazioni su questa libreria | Fare una domanda alla libreria

Compra nuovo
EUR 20,77
Convertire valuta

Aggiungere al carrello

Spese di spedizione: EUR 7,61
Da: Regno Unito a: U.S.A.
Destinazione, tempi e costi

7.

Wyk, Kenneth R.Van; Graf, Mark G.
Editore: Pearson Education (US) (2014)
ISBN 10: 0321604113 ISBN 13: 9780321604118
Nuovi Brossura Prima edizione Quantità: 1
Valutazione libreria
[?]

Descrizione libro Pearson Education (US), 2014. Condizione libro: New. Num Pages: 320 pages. BIC Classification: UF; UR. Category: (P) Professional & Vocational. Dimension: 232 x 178 x 17. Weight in Grams: 510. . 2014. 1st Edition. Paperback. . . . . . Codice libro della libreria V9780321604118

Maggiori informazioni su questa libreria | Fare una domanda alla libreria

Compra nuovo
EUR 29,01
Convertire valuta

Aggiungere al carrello

Spese di spedizione: GRATIS
Da: Irlanda a: U.S.A.
Destinazione, tempi e costi

8.

Wyk, Kenneth R.Van; Graf, Mark G.
Editore: Pearson Education (US)
ISBN 10: 0321604113 ISBN 13: 9780321604118
Nuovi Brossura Quantità: 1
Da
Kennys Bookstore
(Olney, MD, U.S.A.)
Valutazione libreria
[?]

Descrizione libro Pearson Education (US). Condizione libro: New. Num Pages: 320 pages. BIC Classification: UF; UR. Category: (P) Professional & Vocational. Dimension: 232 x 178 x 17. Weight in Grams: 510. . 2014. 1st Edition. Paperback. . . . . Books ship from the US and Ireland. Codice libro della libreria V9780321604118

Maggiori informazioni su questa libreria | Fare una domanda alla libreria

Compra nuovo
EUR 30,65
Convertire valuta

Aggiungere al carrello

Spese di spedizione: GRATIS
In U.S.A.
Destinazione, tempi e costi

9.

Van Wyk, Kenneth R.
ISBN 10: 0321604113 ISBN 13: 9780321604118
Nuovi Quantità: 2
Da
Paperbackshop-US
(Wood Dale, IL, U.S.A.)
Valutazione libreria
[?]

Descrizione libro 2014. PAP. Condizione libro: New. New Book. Shipped from US within 10 to 14 business days. Established seller since 2000. Codice libro della libreria KB-9780321604118

Maggiori informazioni su questa libreria | Fare una domanda alla libreria

Compra nuovo
EUR 28,00
Convertire valuta

Aggiungere al carrello

Spese di spedizione: EUR 3,39
In U.S.A.
Destinazione, tempi e costi

10.

Kenneth R. van Wyk; Dan S. Peters; Mark G. Graf; Diana L. Burley
Editore: Pearson Education (Us) (2014)
ISBN 10: 0321604113 ISBN 13: 9780321604118
Nuovi Brossura Quantità: 1
Da
Valutazione libreria
[?]

Descrizione libro Pearson Education (Us), 2014. Condizione libro: New. Codice libro della libreria EH9780321604118

Maggiori informazioni su questa libreria | Fare una domanda alla libreria

Compra nuovo
EUR 28,48
Convertire valuta

Aggiungere al carrello

Spese di spedizione: EUR 2,99
Da: Germania a: U.S.A.
Destinazione, tempi e costi

Vedi altre copie di questo libro

Vedi tutti i risultati per questo libro