This document discusses ensuring information security in the system development lifecycle process. It provides an overview of several frameworks for implementing an enterprise software security program, including the Microsoft Security Development Lifecycle, OpenSAMM, and BSIMM. It also discusses application security challenges, market drivers for security, and using these frameworks across different industries like financial services.