Security

Security Talk: Harmonizing Security Compliance and the SDL

Download Now Free registration required

Executive Summary

As a result of new initiatives and requirements like the Payment Card Industry Data Security Standard (PCI-DSS), many organizations are building comprehensive application security programs for the first time. The proven success of the Microsoft Security Development Lifecycle (SDL) makes it a great model to follow, but it is important to understand how the engineering focus of the SDL makes it different from the typical security-compliance effort. In this podcast, speakers address some of the ways one can harmonize a compliance-driven program with secure engineering discipline to improve the software development practices.

  • Format: Podcast
  • Size: 0 KB