Application security in the ISO27001 environment | IT Governance UK
A comprehensive guide to web application security, from development to deployment, as part of a more extensive ISO 27001 information security management system. A complete discussion of the ISO 27001 controls that apply to web applications and how they address common types of attacks. The second edition is updated to reflect ISO 27001:2013 and the latest cryptography best practices.