Prerequisite: CMIS 242. An in-depth study of the processes, standards, and regulations associated with secure software engineering. The objective is to plan, manage, document, and communicate all phases of a secure software development cycle. Topics include security requirements, secure software life cycle development, threat modeling, and Security Technical Implementation Guides (STIGs).
After completing this course, you should be able to:
- Conduct assessments using threat modeling to manage and lower computer system security risks
- Analyze software security standards, policies, and guidelines to articulate and elaborate requirements
- Select and integrate established security design patterns and address threat assessments to mitigate common vulnerabilities and achieve the target design
- Use automated tools and secure coding practices to analyze and test existing code and reduce vulnerabilities
- Participate in team-based peer reviews to analyze the security development life cycle and mitigate risks and vulnerabilities