| ||Ask HN: Where to start with enterprise-level security and procedures?|
37 points by aosaigh 5 days ago | hide | past | web | favorite | 9 comments |
|I'm the only developer on a small web application that is targetting enterprise customers.|
After meeting with our first client's security team it's clear that we don't have any of the procedures in place that these clients are used to vendors having with regard security and oversight.
While our app and infrastructure has been built with common-sense security and best practises, we haven't put in place things like vulnerability scanning, anti-malware, patch management procedures etc.
Where and how can a developer like myself get started with
1. Understanding the length and breath of _what_ exactly we should be implementing from a security standpoint
2. Actually implementing it
3. Documenting procedures
| Apply to YC