Templates
Operations
NIST Application Security Checklist
🔒

NIST Application Security Checklist

1
Identify and document software applications
2
Define protection needs for each software application
3
Design security architecture for application
4
Select and implement necessary controls
5
Test and evaluate the effectiveness of controls
6
Approval: Control Implementation
7
Develop and implement patch management strategy
8
Perform vulnerability assessments of applications
9
Approval: Vulnerability Assessment
10
Establish incident response plan for application-related security events
11
Configure application to generate logs for security monitoring
12
Train application users on security best practices
13
Run penetration testing on the application
14
Approval: Penetration Testing
15
Implement changes based on the results of the penetration test
16
Retest to ensure problems have been rectified
17
Maintain documentation of security activities and issues
18
Approval: Documentation
19
Review and update security controls regularly
20
Approval: Control Review
21
Retire application securely when it is no longer needed