• Home
• Services
• Methodology
• About Watson Hall
• Security resources
• Contact

Security design, project management, specification, architecture, threat modelling.

Overview

Information systems security is a very important consideration during software application development process. It is just as important as the delivery of the functional requirement. By examining the issues early in the project's initiation phase the environment, operating system, database design and system architecture can be modelled with security built in, ensuring compliance with appropriate legislation, regulations and standards.

The application's architecture should be driven from an agreed security policy for the web application or website. All inter-connected systems must be identified, specified and the dependencies documented. Data should be classified, personal and sensitive data identified and encryption policies considered.

Functional design analysis and planning and the creation of system design specifications, including the security framework, will provide an understanding of the security issues and methods of negating or minimising security risks. Consideration of the development, test and production environments may highlight other security issues that need to be addressed such as access to servers, data replication, configuration management, operations and maintenance.

Example web security design and review projects

Selected projects from the description of Watson Hall's approach:

Other services from Watson Hall

Web site and web application security assessments and audit and information security & privacy policies, standards and procedures.

Act now

Design security into your web sites and web applications with Watson Hall.