Menu

Guidance

SEI CERT Coding Standards
Secure coding standards for C, C++, Java, Perl, and Android.  Developed by the Software Engineering Institute of Carnegie Mellon University. [...]
OWASP Risk Rating Methodology
https://www.owasp.org/index.php/OWASP_Risk_Rating_Methodology
Password guidance: simplifying your approach
Guidance on password creation and usage issued by the UK Government. https://www.gov.uk/government/publications/password-policy-simplifying-your-approach
Information Assurance Support Environment
Cybersecurity tips, guidance, training, and STIGs from the US Defense Information Systems Agency (DISA). http://iase.disa.mil
Online Trust Alliance
Industry working group focused on enhancing online trust and empowering users. https://otalliance.org/
Manageable Network Plan
Guidance from the National Security Agency on building a secure and manageable network. https://www.nsa.gov/ia/_files/vtechrep/ManageableNetworkPlan.pdf
NSA Top 10 Mitigation Strategies
Top 10 mitigation strategies from the National Security Agency. [...]
SANS
Cybersecurity training, guidance, and conferences. http://www.sans.org/
Top 4 Strategies to Mitigate Targeted Cyber Intrusions
Mitigation guidance from the Australian Signals Directorate. http://www.asd.gov.au/infosec/top-mitigations/top-4-strategies-explained.htm
US-CERT
United States Computer Emergency Response Team.  News, articles, guidance, and publications. https://www.us-cert.gov/
CNSS Instructions
Guidance and technical criteria from the Committee on National Security Systems. https://www.cnss.gov/CNSS/issuances/Instructions.cfm
StaySafeOnline.org
Cybersecurity awareness and education. StaySafeOnline.org
Ready.gov
Disaster preparedness guidance and resources. http://www.ready.gov/ From the Site “Launched in February 2003, Ready is a national public service [...]
SANS Critical Security Controls
Top 20 critical security controls as recommended by the SANS Institute. http://www.sans.org/critical-security-controls/