Book description
Providing 100% coverage of the latest CSSLP exam, this self-study guide offers everything you need to ace the exam
CSSLP Certification All-in-One Exam Guide, Third Edition covers all eight exam domains of the challenging CSSLP exam, developed by the International Information Systems Security Certification Consortium (ISC)²®. Thoroughly revised and updated for the latest exam release, this guide includes real-world examples and comprehensive coverage on all aspects of application security within the entire software development lifecycle. It also includes hands-on exercises, chapter review summaries and notes, tips, and cautions that provide real-world insight and call out potentially harmful situations.
With access to 350 exam questions online, you can practice either with full-length, timed mock exams or by creating your own custom quizzes by chapter or exam objective.
CSSLP Certification All-in-One Exam Guide, Third Edition provides thorough coverage of all eight exam domains:
- Secure Software Concepts
- Secure Software Requirements
- Secure Software Design
- Secure Software Implementation Programming
- Secure Software Testing
- Secure Lifecycle Management
- Software Deployment, Operations, and Maintenance
- Supply Chain and Software Acquisition
Table of contents
- Cover
- Title Page
- Copyright Page
- Dedication
- About the Authors
- Contents at a Glance
- Contents
- Acknowledgments
- Introduction
- Exam Objective Map
-
Part I Secure Software Concepts
- Chapter 1 Core Concepts
- Chapter 2 Security Design Principles
- Part II Secure Software Requirements
-
Part III Secure Software Architecture and Design
- Chapter 6 Secure Software Architecture
-
Chapter 7 Secure Software Design
- Performing Secure Interface Design
- Performing Architectural Risk Assessment
- Model (Nonfunctional) Security Properties and Constraints
- Model and Classify Data
- Evaluate and Select Reusable Secure Design
- Perform Security Architecture and Design Review
- Define Secure Operational Architecture
- Use Secure Architecture and Design Principles, Patterns, and Tools
- Chapter Review
-
Part IV Secure Software Implementation
- Chapter 8 Secure Coding Practices
- Chapter 9 Analyze Code for Security Risks
- Chapter 10 Implement Security Controls
-
Part V Secure Software Testing
- Chapter 11 Security Test Cases
- Chapter 12 Security Testing Strategy and Plan
- Chapter 13 Software Testing and Acceptance
-
Part VI Secure Software Lifecycle Management
- Chapter 14 Secure Configuration and Version Control
- Chapter 15 Software Risk Management
-
Part VII Secure Software Deployment, Operations, Maintenance
- Chapter 16 Secure Software Deployment
-
Chapter 17 Secure Software Operations and Maintenance
- Obtain Security Approval to Operate
- Perform Information Security Continuous Monitoring
- Support Incident Response
- Perform Patch Management
- Perform Vulnerability Management
- Runtime Protection
- Support Continuity of Operations
- Integrate Service Level Objectives and Service Level Agreements
- Chapter Review
-
Part VIII Secure Software Supply Chain
- Chapter 18 Software Supply Chain Risk Management
- Chapter 19 Supplier Security Requirements
- Part IX Appendix and Glossary
- Glossary
- Index
Product information
- Title: CSSLP SECURE SOFTWARE LIFECYCLE PROFESSIONAL ALL-IN-ONE EXAM GUIDE, Third Edition, 3rd Edition
- Author(s):
- Release date: February 2022
- Publisher(s): McGraw-Hill
- ISBN: 9781264258215
You might also like
book
CCSP Certified Cloud Security Professional All-in-One Exam Guide, Second Edition, 2nd Edition
Publisher's Note: Products purchased from Third Party sellers are not guaranteed by the publisher for quality, …
book
CISM Certified Information Security Manager All-in-One Exam Guide, Second Edition, 2nd Edition
Provides 100% coverage of every objective on the 2022 CISM exam This integrated self-study guide enables …
book
(ISC)2 CISSP Certified Information Systems Security Professional Official Practice Tests, 3rd Edition
Full-length practice tests covering all CISSP domains for the ultimate exam prep The (ISC)2 CISSP Official …
book
CompTIA Network+ Certification All-in-One Exam Guide, Eighth Edition (Exam N10-008), 8th Edition
This up-to-date Mike Meyers exam guide delivers complete coverage of every topic on the N10-008 version …