I'm a sole developer in a non-IT company. I use C# for programming and AWS.I'm responsible for everything here. How would I be able to stay secure? How should I start in order to program securely? Any good Books?
Start here for some reading material: <a href="https://github.com/paragonie/awesome-appsec" rel="nofollow">https://github.com/paragonie/awesome-appsec</a><p>Get to know the static analysis tools out there, check out OWASP (for web apps), and learn threat modeling. Application security isn't a one-time thing, it's something that is constantly evolving and changing. Learn the processes, then go into the details from there into your chosen technology stack.
I've also read this book, which is good but doesn't go very in deep with the technical stuff: <a href="http://www.amazon.com/Enterprise-Software-Security-Disciplines-Addison-Wesley-ebook/dp/B00QFI5S94" rel="nofollow">http://www.amazon.com/Enterprise-Software-Security-Disciplin...</a><p>Application security isn't just about programming either. It entails elements of risk management, architecture security, configuration management and many other disciplines to be performed effectively.
A personal favorite of mine is this book "Fuzzing: Brute Force Vulnerability Discovery", by Michael Sutton<p><a href="http://amazon.decenturl.com/fuzzing" rel="nofollow">http://amazon.decenturl.com/fuzzing</a><p>Best looking at how hackers are getting in, as-well as programming defensively. Tobias Klein's "A Bug Hunter's Diary" is a good read too:<p><a href="http://amazon.decenturl.com/bug-hunter" rel="nofollow">http://amazon.decenturl.com/bug-hunter</a>