When it comes to application security, Military agencies are under pressure to meet the law as implemented in regulations, which often includes the need for regular awareness and technical training, independent software assessments, and adoption of industry best practices for secure coding.
For more than a decade Security Innovation has provided software assurance and cryptography solutions to Fortune 500 companies and Federal Government agencies, including the DoD, Administrative Office (U.S. Courts), AFRL, Army, Navy, Darpa and Spawar.
DISA STIG Templates & Application Security Requirements
For intelligence and defense agencies and organizations, DOD 8500.01 requires organizations to follow the DISA STIG templates. Application security requirements are defined in a specific STIG called the Application Security and Development STIG. This document sets out a full set of education and process requirements for development application to meet military security standards.
Security Innovation has the experts and expertise to help you meet these requirements. We have full set of application security education and services to help you get and stay compliant with these requirements, including:
Security Innovation Solutions
Computer Based-Training
To meet the management, developer, project leader, architect and QA training requirements, we offer TeamProfessor, the industry’s largest application security computer-based training library. Popular courses include
- How to Conduct a Code Review
- Creating Secure ASP.Net Applications
- How to Test for the OWASP Top Ten
- Security Tools & Technologies
- 30 more
“In Practice” Secure Development Guidance
Once training is complete, developers need just in time guidance that can be customized for the agency’s practices and standards. TeamMentor is an industry-first Secure Development Knowledgebase that comprises dance that comprise more than 3,000 how-to’s, secure code snippets, attacks, and checklists - offering expert guidance as development and IT teams conduct specific security activities. more >>
Software and SDLC Assessments
To help you bring the appropriate security process and activities to your development practice, Security Innovation can identify problems in your software during any phase of the development lifecycle, or within the SDLC itself.