Here I started compiling learning resources for different areas. These are Internet resources that I really liked and found useful.
Cloud Computing Security
- NIST information on Cloud Computing Security (http://csrc.nist.gov/groups/SNS/cloud-computing/index.html)
- CSA – Cloud Security Alliance (http://www.cloudsecurityalliance.org/)
- Cloud Computing Security Alliance Guide (http://www.cloudsecurityalliance.org/csaguide.pdf)
- ENSIA – Cloud Computing Risk Analysis http://www.enisa.europa.eu/act/rm/files/deliverables/cloud-computing-risk-assessment
Check Lists
- NIST National Checklist Program Repository (http://web.nvd.nist.gov/view/ncp/repository)
Standards, Regulations
- PCI Security Standard at https://www.pcisecuritystandards.org/
- Sarbanes-Oxley Act at http://www.sec.gov/about/laws.shtml
- HIPAA http://www.hhs.gov/ocr/privacy/
- HITRUST standard http://www.hitrustalliance.net/
Secure Software Development
- CWE/SANS Top 25 most dangerous coding errors (http://cwe.mitre.org/top25/)