A Message That Resonates

June 20, 2012

A couple of weeks ago I posted an article on managing security requirements on agile development at InfoQ. I was pleasantly surprised to see a number of development / agile folks respond positively to the article on the Twitterverse. In fact, I think this article got more attention from developers (not just security focused ones) than anything I’ve ever written.

The result is encouraging. If application security practitioners really want to drive development organizations to adopt security holistically then we have an opportunity: piggyback off the agile agenda for change, and make sure that we don’t think of security in isolation.

Agile developers are looking for ways to improve managing all sorts of non-functional requirements (NFRs), including availability, scalability, performance, accessibility, privacy, and many others. We have an opportunity to help and be heard here just so long as we don’t insist that security is special.

Previous Article
Practical Tips for Wireless Security Assessments in Corporate Environments
Practical Tips for Wireless Security Assessments in Corporate Environments

When a wireless security assessment is performed, its goals typically include 1) identifying anomalies in t...

Next Article
The Cultural Challenges of Application Security
The Cultural Challenges of Application Security

By Nima Dezhkam and Rohit Sethi Steve, the application security expert, walks into a room of his company’s ...

Learn how you can use SD Elements to integrate security into software development.

Watch Video