Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
Certified Secure Software Life cycle Professional (CSSLP)
SecureNinja's Certified Secure Software Lifecycle Professional (CSSLP) training provides in-depth coverage of secure software development practices across all phases of the software development lifecycle (SDLC). This course is designed for software developers, engineers, and security professionals responsible for integrating security into software projects. Students will learn how to identify security requirements, perform threat modeling, implement secure coding techniques, conduct code reviews, and manage vulnerabilities in deployed applications. The course aligns with (ISC)_'s CSSLP Common Body of Knowledge and prepares participants to address security concerns in DevSecOps and Agile environments. SecureNinja's expert instructors bring real-world experience to help students apply secure development principles in practical settings. This course is available in person in our Alexandria, VA classrooms as well as Live Online. Private onsite training is available for groups of 5 or more.
Course Overview
Candidates should have a minimum of four years of cumulative, paid work experience in one or more of the CSSLP domains such as software development, application security, or systems integration. A bachelor's degree or an approved credential may substitute for one year of experience. Familiarity with secure coding practices, software development methodologies, and risk management is strongly recommended.
2034 Eisenhower Ave
Suite 170
Alexandria, VA 22314
- Providers
- Courses
- Course and Provider Quantity
Learning Objectives
This course prepares students for the Certified Secure Software Lifecycle Professional (CSSLP) exam. Students will learn to integrate security best practices into each phase of the software development lifecycle, including requirements gathering, design, implementation, testing, deployment, and maintenance. Course objectives include threat modeling, secure coding, static and dynamic code analysis, and software configuration management. Students will also explore risk assessment, compliance, and governance considerations for application security in enterprise environments. The course emphasizes secure software development in Agile, DevOps, and traditional waterfall methodologies.
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Competency Areas
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.