O'Reilly logo

Application Security in the ISO 27001:2013 Environment by Vinod Vasudevan

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

CHAPTER 5: APPLICATION SECURITY AND ISO27001

 

 

 

As the threats to applications increase, we need a structured approach for managing the security of our applications. ISO27001 is the international standard for information security management best practice, and is the most comprehensive standard for information security. It provides a framework to manage the security of our applications.

ISO27001 defines controls for the acquisition, development, customisation, maintenance and operation of applications. The controls are process-centric and technology-independent, thus making the Standard strong. The Standard does not specify the technical details for the controls. It is expected that organisations will draw on the more detailed technical guidance ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required