Master Application Security with a Practical, Modern, and Comprehensive Guide to Building Secure Software
Security is no longer a responsibility reserved for security teams alone. Every developer, software architect, DevSecOps engineer, and technology leader plays a critical role in protecting modern applications from increasingly sophisticated cyber threats. Whether you're building web applications, APIs, cloud-native services, or enterprise software, understanding application security is essential for delivering reliable and resilient systems.
Application Security: Secure Coding, DevSecOps, and Threat Modeling for Modern Software Development is a comprehensive, hands-on guide that takes you from the fundamentals of application security to the advanced practices used by today's leading software organizations. Written for both beginners and experienced professionals, this book combines foundational concepts with practical techniques, real-world examples, security workflows, comparison tables, checklists, and implementation guidance that can be applied immediately.
Rather than focusing on theory alone, this book demonstrates how to integrate security into every phase of the Secure Software Development Lifecycle (SSDLC), helping you build applications that are secure by design instead of secure by remediation.
Inside this book, you'll learn how to:
Understand the principles and importance of modern application security.
Build and implement a Secure Software Development Lifecycle (SSDLC).
Define security requirements and design secure application architectures.
Perform threat modeling and risk assessments using proven methodologies.
Apply secure coding principles and industry best practices.
Implement secure authentication, authorization, session management, and cryptography.
Prevent common vulnerabilities covered in the OWASP Top 10.
Perform Static, Dynamic, Interactive, and Software Composition Analysis (SAST, DAST, IAST, and SCA).
Integrate security into DevSecOps workflows and CI/CD pipelines.
Secure containers, Kubernetes environments, cloud-native applications, and APIs.
Manage vulnerabilities, conduct incident response, and measure application security performance.
Implement governance, risk management, and compliance within software development.
Protect AI-powered applications against emerging threats such as prompt injection and software supply chain attacks.
Build a successful career in application security with recommended tools, certifications, and learning roadmaps.
This book also includes practical appendices featuring application security glossaries, secure coding checklists, threat modeling templates, security testing templates, and curated tools and resources that can be used in day-to-day development and security operations.
Whether you're a software developer, security engineer, DevSecOps practitioner, cloud engineer, software architect, IT professional, computer science student, or cybersecurity enthusiast, this book provides the knowledge and practical guidance needed to design, develop, test, deploy, and maintain secure software in today's rapidly evolving technology landscape.
If you're ready to strengthen your software development skills, reduce security vulnerabilities, and build applications that stand up to modern cyber threats, Application Security: Secure Coding, DevSecOps, and Threat Modeling for Modern Software Development is the definitive resource to help you achieve that goal.
Les informations fournies dans la section « Synopsis » peuvent faire référence à une autre édition de ce titre.
Vendeur : California Books, Miami, FL, Etats-Unis
Etat : New. Print on Demand. N° de réf. du vendeur I-9798185248669
Quantité disponible : Plus de 20 disponibles
Vendeur : PBShop.store UK, Fairford, GLOS, Royaume-Uni
PAP. Etat : New. New Book. Shipped from UK. Established seller since 2000. N° de réf. du vendeur L2-9798185248669
Quantité disponible : Plus de 20 disponibles
Vendeur : AHA-BUCH GmbH, Einbeck, Allemagne
Taschenbuch. Etat : Neu. Neuware. N° de réf. du vendeur 9798185248669
Quantité disponible : 2 disponible(s)