Highest Voted 'agile' Questions - IT Security Stack Exchange

29

votes

6 answers

How can security audits be integrated into an agile project?

If we give a security auditing company a working system, and ask them to audit it, and only do that once during a project because it's expensive, this is basically waterfall. How can security auditing be integrated into an agile project without…

audit automated-testing agile

asked Oct 06 '14 at 17:20

Robin Green

640
6
11

21

votes

3 answers

Startup security

I'm running a lean start-up, and I can't afford to pay a dedicated security expert, what types of precautions can I take? These would need to be cheap, simple to implement, and require minimal time investment. To clarify, as this is a start-up we…

appsec sdl agile

asked Nov 12 '10 at 12:49

AviD

72,138
22
136
218

10

votes

4 answers

How do I secure my SaaS startup?

I came across this question I like to offer my startup also for security advice. Objective: building a SaaS web application that allows businesses to quickly open up online stores akin to Yahoo! Stores. Programming: Done mostly by me. Sometimes I…

appsec web-application agile

asked Feb 27 '11 at 14:07

Kim Stacks

905
9
21

7

votes

2 answers

I am looking for feedback on Secure Development Lifecycle for Scrum that has been tested?

This question is indeed targeting SDL but for Scrum. The A-SDL from Microsoft is nice, but honestly I am not even daring testing it in reality as it seems too academic. I mean what they request for, requires an army of developers! or a dedicated…

appsec sdl agile

asked Nov 22 '10 at 08:24

Phoenician-Eagle

2,167
16
21

6

votes

3 answers

Security Testing Methods for Enterprise Level

I have been asked to perform risk assessment for a company. The scope covers about 100 applications and in various business units. Major task is to assess currently implemented security controls and provided recommendations after the assessment.…

risk-analysis nist devops agile sdlc

asked Dec 23 '18 at 04:48

ray bash

61
1

1

vote

0 answers

Best practices for the development of security solutions

IT firms developing security solutions (such as antivirus or Auth systems) are required to adopt a more sophisticated level of management and quality control while developing their products. Security firms must hire professionals to ensure the…

software secure-coding agile

asked Dec 25 '16 at 02:03

picolo

177
3

0

votes

2 answers

When can I start security test in an agile environment?

I have a web application and we are working in an agile environment, and the QC team working and need to run security testing. When I can run the security test? I searched for this topic and can't reach an acceptable result for the team.

penetration-test agile

asked Nov 30 '20 at 18:18

Mohamed Elgamal

3
3

0

votes

1 answer

What are security best practices and compliance areas in Agile Software Development process

How do you ensure on a high level that developed software is secure and compliant. We want to introduce a service checklist that will list each item, including "Security and Compliance" section. It will have things/requirements like: No plain-text…

compliance software software-engineering agile

asked Feb 28 '20 at 08:31

dev

937
1
8
23

Questions tagged [agile]