Close
Enter your search into one or more of the boxes below:
You can refine your search by selecting from any of the options below:
Search
Core Software Security: Security at the Source
Foyalty 186

Core Software Security: Security at the Source (Hardback)

£61.99
Usually despatched within 3 weeks.

Synopsis

"... an engaging book that will empower readers in both large and small software development and engineering organizations to build security into their products. ... Readers are armed with firm solutions for the fight against cyber threats."

-Dr. Dena Haritos Tsamitis. Carnegie Mellon University



"... a must read for security specialists, software developers and software engineers. ... should be part of every security professional's library."

-Dr. Larry Ponemon, Ponemon Institute



"... the definitive how-to guide for software security professionals. Dr. Ransome, Anmol Misra, and Brook Schoenfield deftly outline the procedures and policies needed to integrate real security into the software development process. ...A must-have for anyone on the front lines of the Cyber War ..."

-Cedric Leighton, Colonel, USAF (Ret.), Cedric Leighton Associates



"Dr. Ransome, Anmol Misra, and Brook Schoenfield give you a magic formula in this book - the methodology and process to build security into the entire software development life cycle so that the software is secured at the source! "

-Eric S. Yuan, Zoom Video Communications



There is much publicity regarding network security, but the real cyber Achilles' heel is insecure software. Millions of software vulnerabilities create a cyber house of cards, in which we conduct our digital lives. In response, security people build ever more elaborate cyber fortresses to protect this vulnerable software. Despite their efforts, cyber fortifications consistently fail to protect our digital treasures. Why? The security industry has failed to engage fully with the creative, innovative people who write software.



Core Software Security expounds developer-centric software security, a holistic process to engage creativity for security. As long as software is developed by humans, it requires the human element to fix it. Developer-centric security is not only feasible but also cost effective and operationally relevant. The methodology builds security into software development, which lies at the heart of our cyber infrastructure. Whatever development method is employed, software must be secured at the source.





Book Highlights:

















Supplies a practitioner's view of the SDL

Considers Agile as a security enabler

Covers the privacy elements in an SDL

Outlines a holistic business-savvy SDL framework that includes people, process, and technology

Highlights the key success factors, deliverables, and metrics for each phase of the SDL

Examines cost efficiencies, optimized performance, and organizational structure of a developer-centric software security program and PSIRT

Includes a chapter by noted security architect Brook Schoenfield who shares his insights and experiences in applying the book's SDL framework





View the authors' website at http://www.androidinsecurity.com/

Computing & ITComputer programming / software developmentSoftware EngineeringComputing & ITComputer security Publisher: Taylor & Francis Ltd Publication Date: 04/12/2013 ISBN-13: 9781466560956  Details: Type: Hardback Format: Books
Availability: Usually despatched within 3 weeks. Add to Basket

Dr. James Ransome is the Senior Director of Product Security and responsible for all aspects of McAfee's Product Security Program, a corporate-wide initiative that supports McAfee's business units in delivering best-in-class, secure software products to customers. In this role, James sets program strategy, manages security engagements with McAfee business units, maintains key relationships with McAfee product engineers, and works with other leaders to help define and build product security capabilities. His career has been marked by leadership positions in private and public industries, including three chief information security officer (CISO) and four chief security officer (CSO) roles. Prior to entering the corporate world, James had 23 years of government service in various roles supporting the U.S. intelligence community, federal law enforcement, and the Department of Defense. James holds a Ph.D. in Information Systems. He developed/tested a security model, architecture, and provided leading practices for converged wired/wireless network security for his doctoral dissertation as part of a NSA/DHS Center of Academic Excellence in Information Assurance Education program. He is the author of several books on information security, and Core Software Security: Security at the Source is his 10th. James is a member of Upsilon Pi Epsilon, the International Honor Society for the Computing and Information Disciplines, and he is a Certified Information Security Manager (CISM), a Certified Information Systems Security Professional (CISSP), and a Ponemon Institute Distinguished Fellow. Anmol Misra is an author and a security professional with a wide range of experience in the field of information security. His expertise includes mobile and application security, vulnerability management, application and infrastructure security assessments, and security code reviews. He is a Program Manager in Cisco's Information Security group. In this role, he is responsible for developing and implementing security strategy and programs to drive security best practices into all aspects of Cisco's hosted products. Prior to joining Cisco, Anmol was a Senior Consultant with Ernst & Young LLP. In this role, he advised Fortune 500 clients on defining and improving information security programs and practices. He helped corporations to reduce IT security risk and achieve regulatory compliance by improving their security posture. Anmol is co-author of Android Security: Attacks and Defenses, and is a contributing author of Defending the Cloud: Waging War in Cyberspace. He holds a master's degree in Information Networking from Carnegie Mellon University and a Bachelor of Engineering degree in Computer Engineering. He is based out of San Francisco, California.

More books by James Ransome

More books by Anmol Misra

Leave Review

Delivery

Delivery Options

All delivery times quoted are the average, and cannot be guaranteed. These should be added to the availability message time, to determine when the goods will arrive. During checkout we will give you a cumulative estimated date for delivery.
 

Location 1st Book Each additional book Average Delivery Time
Free UK Standard Delivery on Orders Over £25 (2nd Class)     3-5 Days
UK Standard Delivery (2nd Class) £2.99 £0.00 3-5 Days
UK 1st Class Delivery £3.99 £0.00 1-2 Days
Click and Collect / 
Delivery to a Foyles Bookshop
Free Free From 2 hours - Individual item delivery times given at checkout
UK Courier* £7.95 £0.00 1 Working Day
Western Europe**Airmail £9.00 £1.00 7-8 Days
Rest of World Airmail £12.50 £1.00 7-10 Days

* For courier service please contact the Charing Cross Road store

** Includes Austria, Belgium, Denmark, France, Germany, Greece, Iceland, Irish Republic, Italy, Luxembourg, Netherlands, Portugal, Spain, Sweden and Switzerland.

Click and Collect is available for all our shops; collection times will vary depending on availability of items. Individual despatch times for each item will be given at checkout.

Delivery Help & FAQs
 

A Year of Books Subscription Packages 

Delivery is free for the UK. Western Europe costs £60 for each 12 month subscription package purchased. For the Rest of the World the cost is £100 for each package purchased. All delivery costs are charged in advance at time of purchase. For more information please visit the A Year of Books page.
 

Returns Information

If you are not completely satisfied with your purchase*, you may return it to us in its original condition with in 30 days of receiving your delivery or collection notification email for a refund. Except for damaged items or delivery issues the cost of return postage is borne by the buyer. Your statutory rights are not affected.

* For Exclusions and terms on damaged or delivery issues see Returns Help & FAQs

You might also like

Enterprise Integration Patterns, Vol...
(Hardback)
Gregor Hohpe
 
 
£44.99
 
Software-Defined Networking for ...
(Hardback)
Kshira Sagar Sahoo; Bibhudatta Sahoo;...
 
 
£124.00
 
Formal Methods for Software...
(Hardback)
Markus Roggenbach; Antonio Cerone;...
 
 
£64.99
 
Practical Azure Application...
(Paperback)
Thurupathan Vijayakumar
 
 
£27.99
 
© W&G Foyle Ltd
Foyles uses cookies to help ensure your experience on our site is the best possible. Click here if you’d like to find out more about the types of cookies we use.
Accept and Close