The security of the data and services we use every day is also based on the reliability of the IT systems that provide those services and on the secure development of the applications that process those data.
As for a building, the solidity and safety of such systems cannot be separated from adequate planning that takes into account the safety requirements and can only be guaranteed through techniques and tools (the building blocks and the art of the builder) of consolidated development and tested.
The topic of secure application code development (Secure Coding) is very much felt by companies, however it requires skills and investments that are not always available. In fact, this aspect is left to the management of suppliers and often the buying company does not care; this phenomenon becomes even more worrying in situations where internal development is still important and managed by practice based on the skills, not always up to date, of internal developers.
The Secure Coding article : rules and guidelines for secure software development published on Cybersecurity360 helps us to understand the degree of complexity of these issues and how to address the technical, procedural and strategic aspects.