• Online, Instructor-Led
  • Online, Self-Paced
Course Description

Become an (ISC)2 Certified Secure Software Lifecycle Professional (CSSLP). You'll leave this boot camp with the knowledge and expertise needed to apply best practices to each phase of the software development lifecycle from design and implementation to testing and deployment.

Infosec's CSSLP Boot camp teaches you how to incorporate security practices throughout the software development lifecycle. You'll learn key policies, procedures and best practices related to secure software development and how to incorporate them into each phase of the development lifecycle. You'll leave fully prepared to earn your CSSLP certification and prove to employers that you have the knowledge and skills necessary to implement secure software development and help mitigate cyber threats.

Learning Objectives

  1. Secure software concepts Core concepts and secure design principles for controlling the behavior, use and content of the system
  2. Secure software requirements Capturing functional and non-functional security requirements in the requirements gathering phase
  3. Secure software architecture and design Translating security requirements into application design elements
  4. Secure software implementation Applying secure coding and testing standards and tools to avoid introducing security vulnerabilities
  5. Secure software testing Testing for security functionality and resiliency to attack
  6. Secure software lifecycle management Strengthening the overall security posture of the software
  7. Secure software deployment, operations, maintenance Security issues around steady-state operations and management of software
  8. Secure software supply chain Provides a holistic outline of the knowledge and tasks required in managing risk for outsourced development, acquisition and procurement of software and related services

Framework Connections

The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):

Specialty Areas

  • Software Development

Specialty Areas have been removed from the NICE Framework. With the recent release of the new NICE Framework data, updates to courses are underway. Until this course can be updated, this historical information is provided to give better context as to how it can help you with your cybersecurity goals.