Description
The Secure Coding Manual describes the entire Secure Development Lifecycle (SDLC) on around 16 pages in the following steps: risk analysis, planning, design, development, testing and integration, approval and releases, operation and maintenance as well as disposal. Particular attention is paid to internal change management and version control in order to be able to put your product cycles into operation in a clearly defined manner.
The chapter on technical and organizational measures during the entire development process defines, among other things, security standards for development, rules for third-party libraries, specifications for code analysis and the handling of test data.
As with other guidelines, a review process is planned for the guideline itself, as well as regular training for developers on the contents of the guideline.
The standard-compliant specifications for secure software development have been tested several times in ISO 27001 and VDA ISA / TISAX® projects and have been certified as effective by various testing service providers. Of course, we recommend adapting them to the methods and tools used by your company.
Language: German or English
License: Digital template in Microsoft Office format with right of use for a company. The template may be modified as desired. No resale, transfer or commercial use by consulting companies is permitted.
