Applications should be designed and implemented in as secure a manner as possible, using pre-defined application development principles and procedures. Without secure application development, the application component of an information system could be constructed with flaws or other weaknesses, which could allow for the subversion of the app and the contravening of other security controls.
This Application Security Policy Template includes the following sections:
- Default policy statements that define what the enterprise must do.
- Default procedures that define how the enterprise must do it.
- Baseline recommendations to customize the template to individual enterprise requirements.
Included in this zip file are:
- Intro Doc.pdf
- Terms and Conditions.pdf