[brox]

Would like to hear general information security recommendations as well.

[agnokapathetic]

The Art of Software Security Assessment: Identifying and Preventing Software Vulnerabilities by Mark Dow et al. https://www.amazon.com/dp/0321444426/ (https://www.amazon.com/dp/0321444426/)

This book will give you the fundamentals of application security testing.

[indigochill]

A couple I've learned from (I've left out heavily topic-specific books like Cryptography Engineering since I assume you're asking for books about general information security):

Hacking, 2nd Edition - Introduces the foundations of memory and network exploitation

[Security Engineering](https://www.cl.cam.ac.uk/~rja14/book.html) - An overview of a huge array of info sec topics, from "E-policy" to nuclear command security.

Advanced Penetration Testing - Focuses on simulating APT attacks, using the author's penetration testing experiences to illustrate each point.

[brox]

Thanks for the suggestions, folks!