A Study of Risk Management Frameworks and Security Testing For Secure Software Systems
Abstract
The information system is used for data processing to accomplish organizations' missions and business functions. However, there have been significant issues with system security in recent years due to various vulnerabilities and malicious code. Various security measures have been availed to detect the vulnerabilities and risks of the software systems to ensure their security. Since most defects of the software systems occur during the development stage, measures to address the issue should support the detection of risks and security threats. As a result, this study investigates risk management frameworks and security testing tools to ensure software systems' security. This study shows that risk management frameworks, such as mobile security and security testing, effectively detect potential risks and defects to secure software systems. The control over the activities involved in the development of software systems helps to ensure secure software. Recommendations suggest taking into account the behaviors of programmers to enhance the security of tools used.