Microsoft SDL Pro Network Is at the Forefront – and Aujas Is There
Secure code development will become a standard in the near future, according to industry experts at Network World. As the Federal Government continues to require cyber supply chain assurance, you won’t be able to sell any technology products to the government unless you adhere to a Secure Development Lifecycle (SDL) model. Other critical infrastructure industries such as financial services, utilities and telecommunications are adopting these requirements as well.
The Microsoft SDL is a security assurance process that combines holistic and practical approaches, and introduces security and privacy throughout all phases of the development process. Microsoft made its own SDL public as part of its commitment to protecting customers and enabling a more trusted computing experience.
Member of the Microsoft SDL Pro Network
Aujas is now a member of the Microsoft SDL Pro Network. As a Network member, we are part of a group of security consultants, training companies, and tool providers that specialize in application security. Network members have substantial experience and expertise with the Microsoft SDL methodology and technologies.
According to David Ladd, Principal Security Program Manager at Microsoft, “We are very happy to have Aujas join the SDL Pro Network. As an IDG company with a global presence, Aujas will help organizations around the world improve their software security process to overcome security and privacy issues.”
Adds Karl Kispert, Aujas Vice President of Sales, “Our vision is to manage risk and enhance information value for our clients. By implementing the SDL framework, we can help our clients manage their software risk, meet compliance requirements, improve software quality and enhance information value.”
The services Aujas offers as a Network member are designed to span the entire lifecycle and make security and privacy an integral part of how software is developed. Specific capabilities include:
- Training, Policy and Organizational Capabilities, including security training and advice on how to implement the SDL
- Requirements and Design, including risk analysis, functional requirements and threat modeling
- Implementation, including use of banned APIs, code analysis and code review
- Verification, including fuzzing and Web application scanning
- Release and Response, including final security review (FSR), penetration testing, and response planning and execution
Aujas’ Secure Development Life Cycle Services assists in recognizing and avoiding security pitfalls during the software development lifecycle, and also corrects security problems once they arise. It is the transformation of Software Development Lifecycle into a Secure Development Life Cycle.
Our Strategy and Planning help organizations to categorize the applications according to the risk the application presents to the business and formalize the security requirements for the same.
The Aujas Application Architecture and Design Review services check if all the security elements have been considered during the design phase and provide feedback for the architects to adjust the design for maximum security and privacy.
To find out how Aujas can help you implement Microsoft SDL, contact Karl Kispert, our VP of Sales.