Educause Security Discussion mailing list archives

Re: Application Security Policy + Standards for IT Developers

From: Sam Horowitz <samh () UCSB EDU>
Date: Wed, 27 Feb 2019 11:38:17 -0800

https://security.ucop.edu/policies/secure-software-development.html
https://security.ucop.edu/policies/secure-software-configuration.html

I can't speak to the effectiveness or how well these are followed, but we
do have a policy in this area.

----------------------------------------

Sam Horowitz, CISSP, CISM
Chief Information Security Officer
University of California Santa Barbara
(805) 893-5005
samh () ucsb edu


On Wed, Feb 27, 2019 at 11:29 AM Jason Fried <friedj () sunysuffolk edu> wrote:

Good afternoon,



Do any institutions have an infosec policy, as well as minimum
standards/guidelines in place that provide guidance to IT web developers in
securely programming and configuring college-owned web properties? Thanks
in advance…



Regards,



Jay

--

Jason Fried

Information Security Officer

Information Technology Services

Suffolk County Community College

O: 631.451.4291 / M: 631.897.6064

@SuffolkITS

Current thread:

Application Security Policy + Standards for IT Developers Jason Fried (Feb 27)
- Re: Application Security Policy + Standards for IT Developers Laura Raderman (Feb 27)
- Re: Application Security Policy + Standards for IT Developers Sam Horowitz (Feb 27)