Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
va
Newcomer II
‎12-18-2019 05:27 PM
‎12-18-2019 05:27 PM

Secure Coding Practices for a Cloud Application

Hello,

Was not sure if i chose the right location for this post.. so apologies in advance if i have to recategorize this post.

I am trying to locate resources (standards, checklists etc.) which will help accessing the security posture of a Cloud Based Application. There is OWASP and other standard resources but what if the application is not a web based application hosted on a cloud provider but a Integration based application running as PaaS. There is no front end but a lot of data manipulation. In such a scenario are we just limited to looking for PII data that is being extracted, transformed and moved around. Do we have to look at any other aspect of "Secure Coding Practices" that are being violated. If any member can share their experience, would greatly appreciate it.

Thanks

vishu

Labels
Reply
0 Kudos
1 Reply
Caute_cautim
Community Champion
‎12-18-2019 08:52 PM
‎12-18-2019 08:52 PM

@vaI had an initial cast around and found this - which may give you some thoughts and principles to apply:

 

https://www.ibm.com/cloud/garage/architectures/securityArchitecture/implement-secure-devops

 

Regards

 

Caute_cautim

Reply
0 Kudos