{"product_id":"bake-security-into-modern-software-chi-phuong-le-9798247427957","title":"Bake Security into Modern Software Development: A Practical Guide to Shift-Left Security","description":"\u003cp\u003eStep into the world of Secure SDLC with this practical guide that takes you from fundamentals to shipping secure software. Learn how to integrate security into requirements, design, implementation, and testing, then operationalize it through lightweight gates and measurable outcomes - so security is part of delivery, not a last-minute audit.\u003c\/p\u003e\u003cp\u003e\u003cb\u003eKey Features: \u003c\/b\u003e\u003c\/p\u003e\u003cul\u003e\n\u003cli\u003e\u003cp\u003eTurn shift-left security into an end-to-end workflow across the SDLC - from requirements to release\u003c\/p\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cp\u003eApply threat modeling and secure design thinking to reduce risk before code is written\u003c\/p\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cp\u003eUse secure coding guidance mapped to common vulnerability classes and real failure modes\u003c\/p\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cp\u003eBuild evidence-driven quality gates (requirements\/design review, bug bar, release readiness) - to enforce consistency without slowing teams down\u003c\/p\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cp\u003eIntegrate security testing into CI\/CD and triage findings with an engineering-friendly process\u003c\/p\u003e\u003c\/li\u003e\n\u003c\/ul\u003e\u003cp\u003e\u003cbr\u003e\u003cb\u003eBook Description: \u003c\/b\u003e \u003c\/p\u003e\u003cp\u003e\u003c\/p\u003eSoftware runs the core of nearly every organization, and security failures rarely come from a single \"bad line of code.\" They emerge from early decisions - ambiguous requirements, risky trust boundaries, missing abuse cases, weak defaults, and untested assumptions. This book shows how to prevent those failures by baking security into modern software development through a structured Secure SDLC approach.\u003cp\u003eYou will focus on how teams actually work: capturing security-relevant requirements, modeling threats and trust boundaries, selecting mitigations and patterns, writing secure code, and validating with security testing that fits your delivery model. Practical artifacts - checklists, templates, and gate criteria - help you scale security across products while keeping delivery predictable.\u003c\/p\u003e\u003cp\u003eThroughout the book, you build a repeatable workflow you can adapt to different stacks and maturity levels - for web, enterprise, and cloud-native systems. You learn to reduce exploitable bug chains and keep assumptions verified over time.\u003cbr\u003eArtifacts keep teams aligned too.\u003c\/p\u003e\u003cp\u003eBy the end, you will be able to implement a Secure SDLC program that improves security outcomes without unnecessary bureaucracy - with clear phase-by-phase actions, evidence to collect, and a shared definition of \"done\".\u003c\/p\u003e\u003cp\u003e\u003cb\u003eWhat you will learn: \u003c\/b\u003e\u003c\/p\u003e\u003cul\u003e\n\u003cli\u003e\u003cp\u003eTranslate security goals into actionable requirements and quality criteria\u003c\/p\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cp\u003ePerform threat modeling using trust boundaries, abuse cases, and risk-driven prioritization\u003c\/p\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cp\u003eApply secure design principles, patterns, and mitigations that fit real trade-offs\u003c\/p\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cp\u003ePrevent common vulnerabilities with secure coding practices and lightweight reviews\u003c\/p\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cp\u003eIntegrate security testing (SAST, DAST, dependency\/SBOM checks) into CI\/CD\u003c\/p\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cp\u003eDefine and run security gates such as design review, bug bar, and release readiness\u003c\/p\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cp\u003eTriage and fix findings efficiently while improving feedback loops over time\u003c\/p\u003e\u003c\/li\u003e\n\u003c\/ul\u003e\u003cp\u003e\u003cbr\u003e\u003cb\u003eWho this book is for\u003c\/b\u003e \u003c\/p\u003e\u003cp\u003e\u003c\/p\u003eSoftware engineers, tech leads, security champions, and application security professionals who want a practical, systematic way to build secure software. Familiarity with modern delivery (CI\/CD, cloud, web or microservices) is helpful.\u003cp\u003e\u003cb\u003eTable of Contents\u003c\/b\u003e\u003c\/p\u003e\u003cul\u003e\n\u003cli\u003e\u003cp\u003eSecure SDLC overview and mindset\u003c\/p\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cp\u003eRequirements modeling with security in mind\u003c\/p\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cp\u003eArchitecture and Design\u003c\/p\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cp\u003eThreat modeling and risk-driven prioritization\u003c\/p\u003e\u003c\/li\u003e\n\u003cli\u003e1 Mitigations, Security Patterns and Cryptography in Secure SDLC\u003c\/li\u003e\n\u003cli\u003e\u003cp\u003eSecure coding foundations and common vulnerability classes\u003c\/p\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cp\u003eSecurity testing strategy and toolchain integration\u003c\/p\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cp\u003eSecure CI\/CD Pipeline\u003c\/p\u003e\u003c\/li\u003e\n\u003c\/ul\u003e\u003cbr\u003e\u003cbr\u003e\u003cb\u003eAuthor:\u003c\/b\u003e Chi Phuong Le,Binh Anh Nguyen,Dat Tien Trinh\u003cbr\u003e\u003cb\u003eISBN-13:\u003c\/b\u003e 9798247427957\u003cbr\u003e\u003cb\u003ePublisher:\u003c\/b\u003e Independently Published\u003cbr\u003e\u003cb\u003eLanguage:\u003c\/b\u003e English\u003cbr\u003e\u003cb\u003ePublished:\u003c\/b\u003e 03\/20\/2026\u003cbr\u003e\u003cb\u003ePages:\u003c\/b\u003e 534\u003cbr\u003e\u003cb\u003eFormat:\u003c\/b\u003e Paperback\u003cbr\u003e\u003cb\u003eWeight:\u003c\/b\u003e 2.70lbs\u003cbr\u003e\u003cb\u003eSize:\u003c\/b\u003e 11.00h x 8.50w x 1.08d","brand":"Chi Phuong Le","offers":[{"title":"Paperback","offer_id":48460477300991,"sku":"9798247427957","price":69.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0662\/2982\/9887\/files\/img_c58a0424-7298-49ff-92e0-2890456ef9c7.jpg?v=1777415015","url":"https:\/\/www.whiterainbookhouse.com\/products\/bake-security-into-modern-software-chi-phuong-le-9798247427957","provider":"WR Book House","version":"1.0","type":"link"}