being a fresh graduate in Computer Engineer. I have recently joined the the security section in a company.
I have been asigned several projects and have to advise on the security issues. Frankly speaking since am new i find it difficult to comment on certain security issues.
Any guidelines / step which are common to each project ?
i.e use should use 3 tier layer, encrption ...etc
I feel lost .