{"id":21696421,"url":"https://github.com/madetech/security-handbook","last_synced_at":"2026-03-19T21:06:17.364Z","repository":{"id":203493698,"uuid":"694098226","full_name":"madetech/security-handbook","owner":"madetech","description":"Made Tech Security Handbook for Engineers","archived":false,"fork":false,"pushed_at":"2025-07-25T11:02:15.000Z","size":1790,"stargazers_count":2,"open_issues_count":0,"forks_count":0,"subscribers_count":15,"default_branch":"main","last_synced_at":"2026-01-15T17:57:30.390Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"https://madetech.github.io/security-handbook/","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/madetech.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2023-09-20T10:25:29.000Z","updated_at":"2025-07-25T11:02:19.000Z","dependencies_parsed_at":null,"dependency_job_id":"b3fd2efd-4f9d-45d8-97e9-7d87de805f7d","html_url":"https://github.com/madetech/security-handbook","commit_stats":null,"previous_names":["madetech/security-handbook"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/madetech/security-handbook","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/madetech%2Fsecurity-handbook","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/madetech%2Fsecurity-handbook/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/madetech%2Fsecurity-handbook/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/madetech%2Fsecurity-handbook/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/madetech","download_url":"https://codeload.github.com/madetech/security-handbook/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/madetech%2Fsecurity-handbook/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":29039825,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-02-03T09:33:44.148Z","status":"ssl_error","status_checked_at":"2026-02-03T09:33:43.343Z","response_time":96,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-11-25T19:19:48.879Z","updated_at":"2026-02-03T09:41:45.445Z","avatar_url":"https://github.com/madetech.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"# 📖 Security Handbook\n## FAQ\n- [How do I classify data correctly?](faq/how-do-I-classify-data-correctly.md)\n- [What is a Security Incident Management Plan?](faq/what_is_a_simp.md)\n\n## 🏫 Learning Paths\n- [Threat Modelling](learning_paths/threat_modelling.md)\n- [Security Journey](learning_paths/security_journey.md)\n\n## 🗣️ Security COP talks (Made Tech internal only videos)\n- [A Cyber Security showcase by Arnie Armstrong](https://drive.google.com/file/d/1QOXis-2hGmafHxZ4VoQ3ni_qBKlh2O5N/view?usp=drive_link)\n- [Live demonstration of hacking challenge by Arnie Armstrong](https://drive.google.com/file/d/1E-c3nn8ROS5jB0ZAGHBMDZ1k7WyMNMsX/view?usp=drive_link)\n- [Security Assurance Across Government by Reuben Hilyer](https://drive.google.com/file/d/1BfUJVJSYhHrvd7VSMb90B17Tm5xdMYOK/view?usp=drive_link), [Deck](https://docs.google.com/presentation/d/1lSuIpnreSQg-LYiEfc1IYgTO0ZaQkEqROu4uMjtV3iA/edit?usp=drive_link)\n\n## 🌐 Our Blogs\n- [Is your technical architecture driving the right outcomes](https://www.madetech.com/blog/is-your-technical-architecture-driving-the-right-outcomes/?utm_content=305104948\u0026utm_medium=social\u0026utm_source=linkedin\u0026hss_channel=lcp-276725)\n\n## 📚 Runbooks\n- [Threat Management Checkpoints](https://docs.google.com/document/d/10OPig5LFZLqQ1UB68HUYzokrlNh8iw0jeW2JOuNQ9mY/edit?usp=sharing)\n- [Cloud Service Checkpoints](https://docs.google.com/document/d/1QKoROm68BQFwPWlXCKabHTFHZrS_JGp-Cup53_pg5RM/edit?usp=sharing)\n- [Secure By Design Checklist (Copy of Cabinet Office Form)](https://docs.google.com/document/d/1vSU56GYgjBC-w7h1Vz5h_5wt2H5Mx9twJHyj0RUL_Hg/edit?usp=sharing)\n- [Secure by Design Tracker - Gov.uk link](https://www.security.gov.uk/policy-and-guidance/secure-by-design/activities/tracking-secure-by-design-progress/)\n\n## 🌐 Learning Resources\n- [Security Journey - Made Tech funded online training](https://madetech.securityjourney.com/)\n- [Secure development and deployment guidance](https://www.ncsc.gov.uk/collection/developers-collection)\n- [NCSC - Secure by Default](https://www.ncsc.gov.uk/information/secure-default)\n- [The cloud security principles - NCSC.GOV.UK ](https://www.ncsc.gov.uk/collection/cloud/the-cloud-security-principles)\n- [Bow Ties and Attack Trees for Risk](https://www.2t-security.com/bow-ties-and-attack-trees-for-risk/)\n- [Intro to threat modelling by Cormac Brady](https://docs.google.com/presentation/d/1vWb-hk7vrF5S3yhEdCSpRS3CmHIB_hza0j2uEBxRDX0/edit#slide=id.g7f1ca5d94a_1_3)\n- [Intro to threat modelling by Lawrence Goldstein](https://docs.google.com/presentation/d/131kbL6icdycy7Ee-E5CfIil6OLrAOJ922O9e__ss-Fw/edit#slide=id.gc07cbd5c3a_0_0)\n\n## ⚒️ Principles, Processes, Standards and Tools\n- [DevSecOps Approach](standards/dev_sec_ops.md)\n- [DevSecOps Pipeline Tools](standards/dev_sec_ops_tools.md)\n- [Threat Management Approaches](standards/threat_management.md)\n- [CIS 18 Security Controls](https://www.cisecurity.org/controls/cis-controls-list)\n- [Risk Assessment template document](https://docs.google.com/document/d/1MqoJB2XPtNwc2ilV8jIW-P07qnAXQldMRBDrzU2Ap48/edit?usp=sharing)\n- [Threat Modeling MIRO Template](https://miro.com/app/board/uXjVJdRvOfI=/)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmadetech%2Fsecurity-handbook","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fmadetech%2Fsecurity-handbook","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmadetech%2Fsecurity-handbook/lists"}