Learn how to integrate security measures throughout the Software Development Lifecycle (SDLC) in this comprehensive conference talk. Explore key concepts including scoping, separation of duties, requirements gathering, and threat modeling. Discover essential tools for testing, deployment, and maintenance phases. Gain insights into addressing security flaws and bugs effectively. Understand the importance of proper destruction practices and access valuable resources to enhance your software security knowledge.
Overview
Syllabus
Intro
Bugs
Security flaws
Bill Sempf
Software Development Lifecycle
Scoping
Separation of Duties
Requirements Gathering
Threat Modeling
Tools
Testing
Deployment Tools
Maintenance
Destruction
Resources
Related Courses
-
ISC2 Certified Secure Software Life-Cycle Professional (CSSLP)
-
Application Security for Developers and DevOps Professionals
-
DevSecOps Fundamentals
-
Security Operations and Administration
5.0 -
Lessons Learned Implementing SDLC and How To Do It Better
-
Every Day Is a Zero Day - Building an In-House Secure SDLC Program
