制作安全软件:工程领导者的设计安全指南
Gain a solid understanding of the threat landscape and discover best practices to protect your software factory throughout the SDLC, with valuable insights from security experts at GitGuardian
Key Features Develop a strong security posture by grasping key attack vectors in the SDLC Implement industry-leading best practices to protect software from evolving threats Utilize legislative and regulatory landscapes to mitigate compliance-related costs Book Description Drawing from GitGuardian's extensive experience in securing millions of lines of code for organizations worldwide, Crafting Secure Software takes you on an exhaustive journey through the complex world of software security and prepares you to face current and emerging security challenges confidently.
Authored by security experts, this book provides unique insights into the software development lifecycle (SDLC) and delivers actionable advice to help you mitigate and prevent risks. From securing code-writing tools and secrets to ensuring the integrity of the source code and delivery pipelines, you’ll get a good grasp on the threat landscape, uncover best practices for protecting your software, and craft recommendations for future-proofing against upcoming security regulations and legislation.
By the end of this book, you’ll have gained a clear vision of the improvements needed in your security posture, along with concrete steps to implement them, empowering you to make informed decisions and take decisive action in safeguarding your software assets.
What you will learn Get to grips with security trends and GitGuardian's role in modern software Analyze major security breaches and their impact on the industry Develop a threat model tailored to your business and risk appetite Implement security measures across your entire SDLC Secure secrets within codebases, configurations, and artifacts Design and maintain secure build pipelines and deployment setups Navigate security compliance, including current and future laws Prepare for future security with AI-generated code integration Who this book is for This book is an essential read for security and IT leaders navigating the complexities of modern software development. The book is also useful for chief security officers (CSOs), chief information security officers (CISOs), security architects, DevOps professionals, and IT decision makers. A basic understanding of software engineering, version control, and build and delivery mechanisms is needed. This guide will empower you to comprehend and mitigate threats in today's dynamic software factories, regardless of your technical depth.
英文| 2024 | 9781835885062 | 156页|电子版| 2 MB 通过GitGuardian安全专家的宝贵见解,深入了解威胁形势,发现在整个SDLC中保护您的软件工厂的最佳实践 关键功能通过掌握SDLC中的关键攻击媒介来制定强有力的安全态势实施行业领先的最佳实践来保护软件免受不断变化的威胁利用立法和监管环境来降低与合规相关的成本书籍描述利用GitGuardian在为全球组织保护数百万行代码方面的丰富经验,Crafting Secure software将带您深入了解复杂的软件安全世界,并让您自信地应对当前和新兴的安全挑战。 本书由安全专家撰写,对软件开发生命周期(SDLC)提供了独特的见解,并提供了可操作的建议,以帮助您减轻和预防风险。从保护代码编写工具和秘密到确保源代码和交付管道的完整性,您将很好地掌握威胁形势,发现保护软件的最佳实践,并为未来应对即将出台的安全法规和立法制定建议。 到本书结束时,您将清楚地了解安全态势所需的改进,以及实施这些改进的具体步骤,使您能够做出明智的决定,并在保护软件资产方面采取果断行动。 您将学习的内容掌握安全趋势和GitGuardian在现代软件中的作用分析重大安全漏洞及其对行业的影响开发一个适合您的业务和风险偏好的威胁模型在整个SDLC中实施安全措施在代码库、配置和工件中保密设计和维护安全的构建管道和部署设置导航安全合规性,包括当前和未来的法律使用人工智能生成的代码集成为未来的安全做好准备这本书适合谁这本书是安全和IT领导者应对现代软件开发复杂性的必读之作。这本书对首席安全官(CSO)、首席信息安全官、安全架构师、DevOps专业人员和IT决策者也很有用。需要对软件工程、版本控制以及构建和交付机制有基本的了解。本指南将使您能够理解和减轻当今动态软件工厂中的威胁,无论您的技术深度如何。本站不对文件进行储存,仅提供文件链接,请自行下载,本站不对文件内容负责,请自行判断文件是否安全,如发现文件有侵权行为,请联系管理员删除。
Wireless Communications for Power Substations: RF Characterization and Modeling
Projective Geometry: Solved Problems and Theory Review (True PDF,EPUB)
Kingship and Government in Pre-Conquest England c.500–1066
Numerical Algorithms with C
Mathematical Modelling Skills
The Art of Encouragement: How to Lead Teams, Spread Love, and Serve from the Heart (True PDF)
Principles of Cybersecurity
React in Depth (True/Retail EPUB)
The Complete Obsolete Guide to Generative AI (True/Retail EPUB)
IT-Forensik: Ein Grundkurs