User Manual for Lumify Work models including: CSSLP Certified Secure Software Lifecycle Professional, CSSLP, Certified Secure Software Lifecycle Professional, Secure Software Lifecycle Professional, Software Lifecycle Professional, Lifecycle Professional

ISC2 CSSLP & Certified Secure Software Lifecycle Professional | Lumify Work | Lumify Work PH

Certified Secure Software Lifecycle Professional (CSSLP )

4 days ago — instructions, error messages, user guides, release notes). Identify Undocumented Functionality. Analyse Security Implications of Test Results (e.g., impact on ...

• Google Docs
• Google Drive
• Download [pdf]
• Download Optimized
• Document:
  • Text
  • References

File Info : application/pdf, 7 Pages, 699.38KB

CYBER SECURITY
Certified Secure Software Lifecycle Professional (CSSLP®)

LENGTH
5 days

ISC2 AT LUMIFY WORK
ISC2: The world's leading cyber security and IT security professional organisation. Lumify Work is one of only a few select training providers in Australia with campuses in New Zealand and the Philippines. We offer official ISC2 courses and training materials.

WHY STUDY THIS COURSE
Gain the core knowledge and learn the best security practices f or the sof tware development lif ecycle (SDLC) and prepare f or globally recognised CSSLP® secure sof tware development certif ication. It is a proven way to build your career and better incorporate security practices into each phase of the SDLC.
CSSLP certif ication recognises leading application security skills. It shows employers and peers you have the advanced technical skills and knowledge necessary f or authentication, authorisation and auditing throughout the SDLC using best practices, policies and procedures established by the cybersecurity experts at ISC2.
CSSLP meets the stringent requirements of ANSI/ISO/IEC Standard 17 024 .
Please note: The exam is not included in the course fee but can be purchased separately. Please contact us for a quote.

Gain Instant Credibility with CSSLP Certi cation

Introducing Certif ied Secure Sof tware Lif ecycle Prof essional (CSSLP®) Can't see the video above? Click here to open it in a new screen.

https://www.lumifywork.com/en-ph/courses/certified-secure-software-lifecycle-professional-csslp/

ph.training@lumifywork.com lumifywork.com

facebook.com/LumifyWorkPh linkedin.com/company/lumify-work-ph

twitter.com/LumifyWorkPH youtube.com/@lumifywork

CYBER SECURITY
Certified Secure Software Lifecycle Professional (CSSLP®)

My instructor was great being able to put scenarios into real world instances that related to my specific situation.
I was made to feel welcome from the moment I arrived and the ability to sit as a group outside the classroom to discuss our situations and our goals was extremely valuable.
I learnt a lot and felt it was important that my goals by attending this course were met.
Great job Lumify Work team.
AMANDA NICOL IT SUPPORT SERVICES MANAGER - HEALT H WORLD LIMIT ED

COURSE SUBJECTS WT hHeAbTroYaOd Usp'LeLctLrEuAmRoNf topics included in the CSSLP Common Body of TKnhoewCledrtgifeie(dCSBeKc®u)renSsoufretwitasrereLleifveacnyccyleaPcrroofsessaslilodniaslc(ipClSinSeLsPi)nvtahliedaf iteelds tohfat isnoffotrwmaarteiopnrosfeecsusriiotyn.als have the expertise to incorporate security practices ­ authentication, authorisation and auditing ­ into each phase of the sTohfistwcaoruersdeevperolovpidmeesnint -lidf ecpytchleco(SveDrLaCg)e, forof mthesoefitgwhat rdeodmeasignsn raenqduired to ipmreppleamreefnotar tihoenCtoSSteLPsteinxgaman. dRedfeepr ltooymtheenCt.SSLP Exam Outline f or a deeper dive into the CSSLP domains.
1. Secure So f t ware Co ncept s Core Concepts
Security Design Principles
2. Secure So f t ware Requirem ent s Def ine Sof tware Security Requirements
Identif y and Analyse Compliance Requirements
Identif y and Analyse Data Classif ication Requirements
Identif y and Analyse Privacy Requirements
Develop Misuse and Abuse Cases Develop Security Requirement Traceability Matrix (ST RM) Ensure Security Requirements Flow Down to Suppliers/Providers
3 . Secure So f t ware Archit ect ure and Design Perf orm T hreat Modeling
Def ine the Security Architecture
Perf orming Secure Interf ace Design
Perf orming Architectural Risk Assessment Model (Non-Functional) Security Properties and Constraints
Model and Classif y Data

https://www.lumifywork.com/en-ph/courses/certified-secure-software-lifecycle-professional-csslp/

ph.training@lumifywork.com lumifywork.com

facebook.com/LumifyWorkPh linkedin.com/company/lumify-work-ph

twitter.com/LumifyWorkPH youtube.com/@lumifywork

CYBER SECURITY
Certified Secure Software Lifecycle Professional (CSSLP®)

Evaluate and Select Reusable Secure Design
Perf orm Security Architecture and Design Review Def ine Secure Operational Architecture (e.g., deployment topology, operational interf aces) Use Secure Architecture and Design Principles, Patterns, and Tools

Lumif y Work Customised Tra ining
We can also deliver and customise this training course for larger groups saving your organisation time, money and resources.
For more information, please contact us on 02 8286 9429.

4 . Secure So f t ware Im plem ent at io n Adhere to Relevant Secure Coding Practices (e.g., standards, guidelines and regulations)
Analyse Code f or Security Risks
Implement Security Controls (e.g., watchdogs, File Integrity Monitoring (FIM), anti-malware) Address Security Risks (e.g. remediation, mitigation, transf er, accept) Securely Reuse T hird-Party Code or Libraries (e.g., Sof tware Composition Analysis (SCA))
Securely Integrate Components
Apply Security During the Build Process

5. Secure So f t ware Test ing Develop Security Test Cases
Develop Security Testing Strategy and Plan Verif y and Validate Documentation (e.g., installation and setup instructions, error messages, user guides, release notes)
Identif y Undocumented Functionality Analyse Security Implications of Test Results (e.g., impact on product management, prioritisation, break build criteria)
Classif y and Track Security Errors

https://www.lumifywork.com/en-ph/courses/certified-secure-software-lifecycle-professional-csslp/

ph.training@lumifywork.com lumifywork.com

facebook.com/LumifyWorkPh linkedin.com/company/lumify-work-ph

twitter.com/LumifyWorkPH youtube.com/@lumifywork

CYBER SECURITY
Certified Secure Software Lifecycle Professional (CSSLP®)

Secure Test Data Perf orm Verif ication and Validation Testing
6 . Secure So f t ware Lif ecycle Managem ent Secure Conf iguration and Version Control (e.g., hardware, sof tware, documentation, interf aces, patching) Define Strategy and Roadmap Manage Security Within a Sof tware Development Methodology Identif y Security Standards and Frameworks Define and Develop Security Documentation Develop Security Metrics (e.g., def ects per line of code, criticality level, average remediation time, complexity) Decommission Sof tware Report Security Status (e.g., reports, dashboards, f eedback loops) Incorporate Integrated Risk Management (IRM) Promote Security Culture in Sof tware Development Implement Continuous Improvement (e.g., retrospective, lessons learned)
7. Secure So f t ware Deplo ym ent , O perat io ns, Maint enance Perf orm Operational Risk Analysis Release Sof tware Securely Securely Store and Manage Security Data Ensure Secure Installation Perf orm Post-Deployment Security Testing

https://www.lumifywork.com/en-ph/courses/certified-secure-software-lifecycle-professional-csslp/

ph.training@lumifywork.com lumifywork.com

facebook.com/LumifyWorkPh linkedin.com/company/lumify-work-ph

twitter.com/LumifyWorkPH youtube.com/@lumifywork

CYBER SECURITY
Certified Secure Software Lifecycle Professional (CSSLP®)
Obtain Security Approval to Operate (e.g., risk acceptance, sign-of f at appropriate level) Perf orm Inf ormation Security Continuous Monitoring (ISCM) Support Incident Response Perf orm Patch Management (e.g. secure release, testing) Perf orm Vulnerability Management (e.g., scanning, tracking, triaging) Runtime Protection (e.g., Runtime Application Self -Protection (RASP), Web Application Firewall (WAF), Address Space Layout Randomisation (ASLR)) Support Continuity of Operations Integrate Service Level Objectives (SLO) and Service Level Agreements (SLA) (e.g., maintenance, perf ormance, availability, qualif ied personnel)
8. Secure So f t ware Supply Chain Implement Sof tware Supply Chain Risk Management
Analyse Security of T hird-Party Sof tware
Verif y Pedigree and Provenance
Ensure Supplier Security Requirements in the Acquisition Process Support contractual requirements (e.g., Intellectual Property (IP) ownership, code escrow, liability, warranty, End-User License Agreement (EULA), Service Level Agreements (SLA))

https://www.lumifywork.com/en-ph/courses/certified-secure-software-lifecycle-professional-csslp/

ph.training@lumifywork.com lumifywork.com

facebook.com/LumifyWorkPh linkedin.com/company/lumify-work-ph

twitter.com/LumifyWorkPH youtube.com/@lumifywork

CYBER SECURITY
Certified Secure Software Lifecycle Professional (CSSLP®)
WHO IS THE COURSE FOR? T he ISC2 CSSLP is ideal f or sof tware development and security prof essionals responsible f or applying best practices to each phase of the SDLC ­ f rom sof tware design and implementation to testing and deployment ­ including those in the f ollowing positions:
Sof tware Architect Sof tware Engineer Sof tware Developer Application Security Specialist Sof tware Program Manager Quality Assurance Tester Penetration Tester Sof tware Procurement Analyst Project Manager Security Manager IT Director/Manager
PREREQ UISITES To qualif y f or this certif ication, you must pass the exam and have at least f our years of cumulative, paid work experience as a sof tware development lif ecycle prof essional in one or more of the eight domains of the ISC2 CSSLP Common Body of Knowledge. A relevant f our-year degree can satisf y one year of required experience. Learn more about the ISC2 CSSLP Experience Requirements.

https://www.lumifywork.com/en-ph/courses/certified-secure-software-lifecycle-professional-csslp/

ph.training@lumifywork.com lumifywork.com

facebook.com/LumifyWorkPh linkedin.com/company/lumify-work-ph

twitter.com/LumifyWorkPH youtube.com/@lumifywork

CYBER SECURITY
Certified Secure Software Lifecycle Professional (CSSLP®)
A candidate who doesn't have the required experience to become a CSSLP may become an Associate of ISC2 by successf ully passing the CSSLP exam. An Associate of ISC2 can then accumulate the necessary work experience to achieve full certification.

The s upply of this cours e by Lumify Work is governed by the booking terms and conditions . Pleas e read the terms and conditions carefully before enrolling in this cours e, as enrolment in the cours e is conditional on acceptance of thes e terms and conditions .
https://www.lumifywork.com/en-ph/courses/certified-secure-software-lifecycle-professional-csslp/

ph.training@lumifywork.com lumifywork.com

facebook.com/LumifyWorkPh linkedin.com/company/lumify-work-ph

twitter.com/LumifyWorkPH youtube.com/@lumifywork



References

• Lumify Work | Corporate IT Training | Transform Your IT Team
• CSSLP Experience Requirements
• Lumify Work | Corporate IT Training | Transform Your IT Team
• Associate of ISC2 | Lumify Work PH
• ISC2 CSSLP & Certified Secure Software Lifecycle Professional | Lumify Work | Lumify Work PH