CSSLP – Certified Secure Software Lifecycle Professional

• 12 months unlimited access
• Completion Certificate awarded upon completion to show employers your new skills
• Free upgrade on to our premium platform
• Free career advice available on completion

Become a CSSLP – Certified Secure Software Lifecycle Professional

Earning the globally recognized CSSLP secure software development certification is a proven way to build your career and better incorporate security practices into each phase of the software development lifecycle (SDLC).

CSSLP certification recognizes leading application security skills. It shows employers and peers you have the advanced technical skills and knowledge necessary for authentication, authorization and auditing throughout the SDLC using best practices, policies and procedures established by the cybersecurity experts at (ISC)².

Prove your skills, advance your career, and gain support from a community of cybersecurity leaders here to help you throughout your professional journey.

What you will learn

• Protecting data and business assets and complying with applicable laws and regulations

• Following secure coding standards and how documentation can help in the maintenance and operations of software

• Identifying software vulnerabilities and how to perform testing of units of code

• Managing each phase of the software development lifecycle (SDLC)

• Developing security to meet environmental risk and operational challenges

• Supporting incident response, patch and vulnerability management, and continuity of operations

• Supporting the software acquisitions process

• Understanding security related frameworks and best practices

Course Outline

Overview

• Pre Requirements
• What is a CSSLP
• Why becoming a CSSLP Matters
• Exam Overview
• CSSLP Exam Pre Requirements

1 Secure Software Concepts

1.1 Core Concepts

• Confidentiality, integrity and Availability (CIA)
• Authentication, Authorization and Accountability
• Nonrepudiation and Digital Signatures

1.2 Security Design Principles

• Least privilege
• Separation of duties
• Defense in Depth
• Whiteboard- Defense in Depth
• Fail Safe
• Economy of mechanism
• Complete mediation
• Open Design
• Least common mechanism
• Whiteboard - Least Common
• Psychological acceptability
• Leveraging existing components
• Eliminate single point of failure
• Demo -Hashing
• Test Tips
• Section Review Questions

2. Secure Software Requirements

2.1 Identify Security Requirements

• Functional and Non Functional Requirements
• Terminology to know
• Whitboard - Attacks part 1
• Terminology to know part 2
• Cert and Owasp Secure Coding Standards
• Terminology to know part 3
• Legal, regulatory, and industry requirements
• Policy Decomp
• Terminology to know- Legal
• Privacy Concerns
• Control Basics

2.2 Interpret Data Classification Requirements

• Data Classification overview- Ownership, Labeling, Data Types, Data Lifecycle

2.3 Identify Privacy Requirements

• Data anonymization, user consent and Disposition

2.4 Develop Misuse and Abuse Cases

• Abuse Cases

2.5 Include Security in Software Requirement Specifications

• Maturity Models
• What is Identifying Threats?
• hreat Models
• Orgs to Know

2.6 Develop Security Requirement Traceability Matrix

• SRTM
• Demo
• Test Tips
• Section Review Questions

EXPERT INSTRUCTOR-LED TRAINING

Our Courseware uses only the industry’s finest instructors. They have a minimum of 15 years real-world experience and are subject matter experts in their fields. Unlike a live class, you can fast-forward, repeat or rewind all your lectures. This creates a personal learning experience and gives you all the benefit of hands-on training with the flexibility of doing it around your schedule 24/7.

VISUAL DEMONSTRATIONS & MULTIMEDIA PRESENTATIONS

Our courseware includes instructor-led demonstrations and visual presentations that allow students to develop their skills based on real world scenarios explained by the instructor. Our Courseware always focuses on real world scenarios and skill-set development.

QUIZZES & EXAM SIMULATORS

Our custom practice exams prepare you for your exams differently and more effectively than the traditional exam preps on the market. You will have practice quizzes after each module to ensure you are confident on the topic you have completed before proceeding.

This will allow you to gauge your effectiveness before moving to the next module in your course. Our Courses also include practice exams designed to replicate and mirror the environment in the testing centre. These exams are on average 100 questions to ensure you are 100% prepared before taking your certification exam.

SOCIAL LEARNING & NETWORKING

We Have designed a world class Learning Management System (LMS) This system allows you to interact and collaborate with other students, form study groups, engage in discussions in our NOW@ Forums, rate and “like” different courses and stay up to date with all the latest industry knowledge through our forums, student contributions and announcement features. This LMS is unmatched in the industry and makes learning fun and enjoyable.

FLASH CARDS & EDUCATIONAL GAMES

Our Courseware knows that education is not a one size fits all approach. Students learn in different ways through different tools. That is why we provide Flash Cards and Education Games throughout our courses. This will allow you to train in ways that keep you engaged and focused. Each course will have dozens of Flash Cards so you can sharpen your skill-sets throughout your training as well as educational games designed to make sure your retention level of the materials is extremely high.

NAVIGATION & CONTROLS

Our self-paced training programs are designed in a modular fashion to allow you the flexibility to work with expert level instruction anytime 24/7. All courses are arranged in defined sections with navigation controls allowing you to control the pace of your training. This allows students to learn at their own pace around their schedule.

12 MONTHS UNLIMITED ACCESS

Each student will have 12 months unlimited access to allow you to have access to the training anytime 24/7.

The audience should be willing to study and review materials to pass the CSSLP Plus and meet the requirements set by ISC2 In order to become a fully certified CSSLP, (ISC)² requires the candidate to have a minimum of four years cumulative paid full-time SDLC experience in one or more of the eight domains of the CSSLP credential.

A candidate can substitute one year of experience for a four-year college degree. If a candidate passes the certification exam but does not possess the required years of experience they will become an associate of (ISC)² and have five years to earn the experience. At which time they will become a fully certified CSSLP.

Roles which would benefit from taking the exam.

• Software Architect
• Software Engineer
• Software Developer
• Application Security Specialist
• Software Program Manager
• Quality Assurance Tester
• Penetration Tester
• Software Procurement Analyst
• Project Manager
• Security Manager
• IT Director/Manager

Currently there are no Q&As for this course. Be the first to ask a question.