Guest user Created: Apr 15, 2017 Last commented: Apr 15, 2017

Statements for systems development

Do you have full written statements around "Securing the Development Environment" and "Secure Engineering Principles" that we can copy?

0 0

Assign topic to the user

Select user

Expert

Rhand Leal Apr 15, 2017

Answer: No. Since systems development processes are unique for each organization these parts need to be adapted by the organization itself in the Secure Development Procedure template, on sections 3.2 and 3.3.

This article will provide you further explanation about securing development environment and engineering principles:
- How to integrate ISO 27001 A.14 controls into the system/software development life cycle (SDLC) https://advisera.com/27001academy/how-to-integrate-iso-27001-controls-into-the-system-software-development-life-cycle-sdlc/
- What are secure engineering principles in ISO 27001:2013 control A.14.2.5? https://advisera.com/27001academy/blog/2015/08/31/what-are-secure-engineering-principles-in-iso-270012013-control-a-14-2-5/

These materials will also help you regarding securing development environment and engineering principles:
- ISO 27001 Annex A Controls in Plain Engl ish https://advisera.com/books/iso-27001-annex-controls-plain-english/
- Free online training ISO 27001 Foundations Course https://advisera.com/training/iso-27001-foundations-course/

Quote

0 0

Comment as guest or Sign in

HTML tags are not allowed

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

Apr 14, 2017

Expert Advice Community