Course Features
Course Code
LDA/PPET/CSSLP
Mode of Study
In Person/Online Learning/ Blended
Intake
January - March - May - September
Location
London
5 Days Certified Secure Software Lifecycle Professional (CSSLP)
Overview
The Certified Secure Software Lifecycle Professional (CSSLP) certification, offered by (ISC)², is tailored for professionals involved in the software development lifecycle (SDLC) who prioritize secure software design and development. It emphasizes incorporating security best practices at every phase of the SDLC, including requirements gathering, design, development, testing, deployment, and maintenance. The CSSLP aims to reduce vulnerabilities and enhance software resilience by embedding security into coding practices, architecture design, and risk mitigation strategies. This certification is ideal for software developers, architects, engineers, and security professionals who want to ensure that applications are secure from inception to deployment. By validating expertise in secure coding principles, regulatory compliance, and threat modeling, the CSSLP helps organizations mitigate risks and meet the demands of secure application delivery in a rapidly evolving threat landscape.
Who Should Attend?
Cloud architects
Security consultants
IT and security managers
Mid- to senior-level professionals involved in cloud computing and security
Cloud service providers
(ISC)² Official CCSP Training
Cloud Security Alliance (CSA) Certificate of Cloud Security Knowledge (CCSK)
Secure Software Concepts
- Core concepts of software security
- Importance of integrating security throughout the SDLC
- Principles of secure software development
Secure Software Requirements
- Gathering and analyzing security requirements
- Aligning security requirements with business goals
- Regulatory and compliance considerations
Secure Software Design
- Secure design principles and patterns
- Threat modeling and risk assessment
- Security architecture and design documentation
Secure Software Implementation/Programming
- Secure coding practices
- Vulnerability identification and mitigation
- Use of secure development tools and environments
Secure Software Testing
- Security testing techniques and methodologies
- Static and dynamic analysis
- Penetration testing and vulnerability scanning
Secure Lifecycle Management
- Managing security throughout the software lifecycle
- Patch management and software updates
- Incident response and recovery planning
Software Deployment, Operations, and Maintenance
- Secure deployment practices
- Monitoring and maintaining secure software environments
- Managing end-of-life for software
Supply Chain and Software Acquisition
- Managing security in third-party software
- Vendor risk management
- Secure software acquisition and procurement
05 days
Expert-led sessions covering all CCSP domains
Use of case studies to illustrate real-world cloud security issues
Practical exercises and hands-on labs
Group discussions to apply concepts and solve problems
Regular quizzes to check understanding
Final assessment to evaluate overall knowledge and skills
- Understand the principles of secure software development and the importance of integrating security throughout the SDLC.
- Develop skills to gather and analyze security requirements and ensure alignment with business objectives.
- Learn secure design principles, threat modeling, and security architecture practices.
- Acquire knowledge of secure coding practices and tools to identify and mitigate vulnerabilities.
- Gain proficiency in security testing techniques, including static analysis, dynamic analysis, and penetration testing.
- Manage security throughout the software lifecycle, including patch management and incident response.
- Implement secure deployment practices and maintain secure software environments
- Navigate the complexities of supply chain security and third-party software acquisition
