Professional Documents
Culture Documents
Designed to build security into day-to-day operations, these actions are carried
out by those with specialist project management or security expertise, such as 4 Specify security requirements
using the developers’ format
information security managers and project managers.
The modern business environment is more demanding than ever. To meet Automate security testing
8
customer expectations, maintain a competitive edge and realise business
opportunities, organisations must continuously refine their processes.
9 Include security in
With efficiency and flexibility ranking as key measures of business success, acceptance criteria
organisations have jettisoned traditional development approaches in favour of
agile ways of working.
10 Evaluate security performance
Getting started Principle title
Where next?
Organisations should also consider the ISF resources related to this report including:
Information Security Forum ©2023 Information Security Forum Limited | Classification: Public, no restrictions | Prepared: June 2023