SOA Security

To support the development of secure solutions there are different standards. It is common to  use a framework to support their security like ISO27002 "Information Security Management Framework" or COBIT. OWASP is an open source alternative which covers parts of these frameworks and is very good to use to start building security into web applications. OWASP describes itself as:
” The Open Web Application Security Project (OWASP) is a worldwide free and open community focused on improving the security of application software. Our mission is to make application security visible, so that people and organizations can make informed decisions about true application security risks.”