97 Things Every Application Security Professional Should Know

As technology continues to advance and more business is conducted online, the potential attack surface increases exponentially and the need for strong application security measures become more and more crucial. This goes double for any organization that handles sensitive personal or financial information which is usually subject to government regulation. The consequences of a successful attack at the application level can be devastating for an organization, ranging from loss of revenue, to damaged reputation, to potential fines and other penalties.This book also introduces you to:What's considered application security and what security professionals should knowWhat developers or software engineers should know about common application vulnerabilities How to design, develop, and test applications so that the application or software is able to defend against exploits and attacksWays to provide readers with fresh perspectives, various insights, and many practical ways to address cyber security related to application developmentThis advice can be applied in development for web, mobile, APIs or other software development, in different development languages, in waterfall and agile software development lifecycle (SDLC), and in the cloud.