Lepofsky, Ron, <br/><br/>
The manager's guide to web application security :  a concise guide to the weaker side of the web / 
Ron Lepofsky. 
 - xxiv, 204 pages ;  23 cm 
 - The expert's voice in security .
 - Expert's voice in security. .
<br/><br/> The Manager's Guide to Web Application Security is a concise, information-packed guide to application security risks every organization faces, written in plain language, with guidance on how to deal with those issues quickly and effectively. Often, security vulnerabilities are difficult to understand and quantify because they are the result of intricate programming deficiencies and highly technical issues. Author and noted industry expert Ron Lepofsky breaks down the technical barrier and identifies many real-world examples of security vulnerabilities commonly found by IT security auditors, translates them into business risks with identifiable consequences, and provides practical guidance about mitigating them.<br/><br/>The Manager's Guide to Web Application Security describes how to fix and prevent these vulnerabilities in easy-to-understand discussions of vulnerability classes and their remediation. For easy reference, the information is also presented schematically in Excel spreadsheets available to readers for free download from the publisher’s digital annex. The book is current, concise, and to the point—which is to help managers cut through the technical jargon and make the business decisions required to find, fix, and prevent serious vulnerabilities. 
<br/><br/>Includes bibliographical references and index. 
<br/><br/>Table of contents (17 chapters)<br/>    Front Matter<br/>    Pages i-xxiv<br/>    Download chapter PDF<br/>    Understanding IT Security Risks<br/>        Ron Lepofsky <br/>    Pages 1-11<br/>    Types of Web Application Security Testing<br/>        Ron Lepofsky <br/>    Pages 13-20<br/>    Web Application Vulnerabilities and the Damage They Can Cause<br/>        Ron Lepofsky <br/>    Pages 21-46<br/>    Web Application Vulnerabilities and Countermeasures<br/>        Ron Lepofsky <br/>    Pages 47-79<br/>    How to Build Preventative Countermeasures for Web Application Vulnerabilities<br/>        Ron Lepofsky <br/>    Pages 81-94<br/>    How to Manage Security on Applications Written by Third Parties<br/>        Ron Lepofsky <br/>    Pages 95-98<br/>    Integrating Compliance with Web Application Security<br/>        Ron Lepofsky <br/>    Pages 99-110<br/>    How to Create a Business Case for Web Application Security<br/>        Ron Lepofsky <br/>    Pages 111-130<br/>    Parting Thoughts<br/>        Ron Lepofsky <br/>    Pages 131-132<br/>    COBIT® 5 for Information Security<br/>        Ron Lepofsky <br/>    Pages 133-145<br/>    Experian EI3PA Security Assessment<br/>        Ron Lepofsky <br/>    Pages 147-159<br/>    ISO/IEC 17799:2005 and the ISO/IEC 27000:2014 Series<br/>        Ron Lepofsky <br/>    Pages 161-163<br/>    North American Energy Council Security Standard for Critical Infrastructure Protection (NERC CIP)<br/>        Ron Lepofsky <br/>    Pages 165-176<br/>    NIST 800 Guidelines<br/>        Ron Lepofsky <br/>    Pages 177-178<br/>    Payment Card Industry (PCI) Data Security Standard Template for Report on Compliance for use with PCI DSS v3.0<br/>        Ron Lepofsky <br/>    Pages 179-196<br/>    Sarbanes-Oxley Security Compliance Requirements<br/>        Ron Lepofsky <br/>    Pages 197-198<br/>    Sources of Information<br/>        Ron Lepofsky <br/>    Pages 199-200<br/>    Back Matter<br/>    Pages 201-204<br/> 
<br/><br/><label>ISBN: </label>9781484201497 1484201493 9781484201480 
<br/><br/><label>LCCN: </label>2015472115 
<br/><br/><label>Subjects--Topical Terms: </label><br/>Web applications--Security measures.<br/>Internet--Security measures.
<br/><br/><label>LC Class. No.: </label>QA76.76.A65  / L463 2014 
<br/><br/><label>Dewey Class. No.: </label>006.78 LEP