YoVDO

Leveraging the ASVS in the Secure Software Development Lifecycle

Offered By: OWASP Foundation via YouTube

Tags

Application Security (AppSec) Courses Risk Assessment Courses Software Security Courses Security Testing Courses Vulnerability Management Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore how to integrate the OWASP Application Security Verification Standard (ASVS) into the Secure Software Development Lifecycle in this AppSecUSA 2017 conference talk. Learn strategies for implementing uniform security requirements across large organizations, prioritizing security tasks, and overcoming challenges in dispersed development teams. Discover how to leverage the ASVS to create functional and non-functional security requirements, develop a questionnaire for determining appropriate ASVS levels, and incorporate security tasks into existing development processes. Gain insights on writing test plans based on ASVS verification statements and mapping them to requirements for effective validation. Understand how this approach can streamline secure development, making it more manageable and less ambiguous for development teams.

Syllabus

Intro
Background
Importance of Security
Solving defects early
Named vulnerabilities in 2016
Security
SDLC
Control
Common Framework
Domains
Verification Statements
Control vs Requirement
Security Control Types
B Sack
Questionnaire
Benefits
Questions


Taught by

OWASP Foundation

Related Courses

Pattern-Oriented Software Architectures: Programming Mobile Services for Android Handheld Systems
Vanderbilt University via Coursera Engineering Maintainable Android Apps
Vanderbilt University via Coursera Software Design as an Element of the Software Development Lifecycle
University of Colorado System via Coursera Secure Software Development
Pluralsight Secure Software Concepts for CSSLPĀ®
Pluralsight