You're reading from Information Security Handbook Enhance your proficiency in information security program development

Product type Paperback

Published in Oct 2023

Publisher Packt

ISBN-13 9781837632701

Length 370 pages

Edition 2nd Edition

Concepts

Information Security

Author (1):

Darren Death

View More author details

Table of Contents (16) Chapters

Preface

1. Chapter 1: Information and Data Security Fundamentals

2. Chapter 2: Defining the Threat Landscape FREE CHAPTER

3. Chapter 3: Laying a Foundation for Information and Data Security

4. Chapter 4: Information Security Risk Management

5. Chapter 5: Developing Your Information and Data Security Plan

6. Chapter 6: Continuous Testing and Monitoring

7. Chapter 7: Business Continuity/Disaster Recovery Planning

8. Chapter 8: Incident Response Planning

9. Chapter 9: Developing a Security Operations Center

10. Chapter 10: Developing an Information Security Architecture Program

11. Chapter 11: Cloud Security Considerations

12. Chapter 12: Zero Trust Architecture in Information Security

13. Chapter 13: Third-Party and Supply Chain Security

14. Index

Why subscribe?

15. Other Books You May Enjoy

SDLC considerations for testing

The importance of security testing throughout the system development life cycle (SDLC) cannot be overstated. As information systems grow increasingly complex and cyber threats become more prevalent, organizations must prioritize security testing from the earliest stages of a project until the system’s eventual disposal. By considering security testing during every phase of the SDLC, organizations can safeguard valuable data and resources, maintain the confidentiality, integrity, and availability of information systems, and mitigate risks. The following discussion highlights the crucial role of security testing across the various stages of the SDLC and outlines best practices for integrating security considerations into each phase.

Project initiation

During the project initiation phase, information security professionals can collaborate closely with business/mission users and IT staff to understand the requested solution. By thoroughly analyzing...