TM
IT Governance - Asia
Books and tools for IT Governance, risk management and compliance
Call us toll free: 1 877 317 3454
Select your region:  Currency:
Click here to view larger image


Click here to view larger image
Application Security in the ISO27001 Environment (Download)

 E-mail this product to a friend
$16.50 (USD) 
Quantity:  Add to Cart

Download Application Security in the ISO27001 Environment and tackle security compliance today!

Application Security in the ISO27001 Environment demonstrates how to secure software applications within a best practice ISO/IEC 27001 environment and supports implementation of the PCI DSS Payment Application Security Standard.

 

Application Security in the ISO27001 Environment is written by Vinod Vasudevan, Anoop Mangla, Firosh Ummer, Sachin Shetty, Sangita Pakala and Siddharth Anbalahan. Together, the authors offer a wealth of expertise in ISO27001 information security, risk management and software application development.

 

Over 224 pages, they address a range of essential topics, including an introduction to ISO27001 and ISO27002, secure development lifecycles, threat profiling and security testing, and secure coding guidelines. As well as showing how to use ISO27001 to secure individual applications, the book demonstrates how to tackle this issue as part of the development and roll out of an organisation-wide Information Security Management System conforming to the Standard.
 
PCI DSS Application Security
This book provides guidance on secure coding and application development principles that is fundamental to meeting the requirements of the PCI DSS Application Security Standard.



Software packages are the conduits to critical business data, thus securing applications adequately is of the utmost importance. Therefore you must order a copy of this book today, as it is the de-facto standard on application security in the ISO/IEC 27001 environment.  

 

Key Features:

  • De-facto standard on application security in the ISO/IEC 27001 environment.
  • Leads the reader step-by-step through all of the phases of how to secure software applications in the context of rolling out of an ISO/IEC 27001 ISMS.
  • Demonstrates how to secure such mainstream applications as the Microsoft Office suite, SAP, Lotus Notes, Adobe applications, SAGE, Skype, and many other software applications.  

"This book can be seen as result of a fruitful encounter between a CISO and a software developer. By one hand, the book introduces the major concepts of management of information security, according to the ISO 27001 approach, and then details which security requirements apply to the application’s domain. By another hand, the book presents how major application threats such as SQL injection and cross site scripting can be addressed by ISO requisites, in a language familiar to every developer. In sum, this book explains ISO in a programmer’s languages and applications challenges to security managers."  Paulo Coelho, CISSP ISO27001 Consultant & Lead Auditor

 

Authors: Vinod Vasudevan, Anoop Mangla, Firosh Ummer, Sachin Shetty, Sangita Pakala, Siddharth Anbalahan
Publisher: IT Governance Publishing
ISBN: 9781905356362
Pages: 224
Format: Electronic Download (Zipped .PDF 2.8MB)
Published Date: 10 April 2008
Availability: Immediate Download

Order the de-facto standard to application security in the form of this download today!


Customer Reviews

 Write a review for this product

There are no comments for this product. CLICK HERE to be the first one to share your opinion!