A Message That Resonates

June 20, 2012

A couple of weeks ago I posted an article on managing security requirements on agile development at InfoQ. I was pleasantly surprised to see a number of development / agile folks respond positively to the article on the Twitterverse. In fact, I think this article got more attention from developers (not just security focused ones) than anything I’ve ever written.

The result is encouraging. If application security practitioners really want to drive development organizations to adopt security holistically then we have an opportunity: piggyback off the agile agenda for change, and make sure that we don’t think of security in isolation.

Agile developers are looking for ways to improve managing all sorts of non-functional requirements (NFRs), including availability, scalability, performance, accessibility, privacy, and many others. We have an opportunity to help and be heard here just so long as we don’t insist that security is special.

Previous Article
Practical Tips for Wireless Security Assessments in Corporate Environments
Practical Tips for Wireless Security Assessments in Corporate Environments

When a wireless security assessment is performed, its goals typically include 1) identifying anomalies in t...

Next Article
Dealing with the “Security is Special” problem
Dealing with the “Security is Special” problem

In the last entry on cultural challenges in application security series, we introduced the “Security is Spe...

×

Schedule a live demo

First Name
Last Name
Company Name
!
Thank you!
Error - something went wrong!