- Training
- Training Live Events
- Training Without Travel
- Security Courses
- Security Curricula
- Certified Instructors
- Training Calendars
- SANS vLive! / SANS @Home
- SANS OnDemand
- Community SANS
- SANS Mentor Program
- Coins
- SANS Onsite
- SANS SelfStudy
- SANS Summit Series
- SANS Partnership Series
- Webcasts
- Work Study
- Events Archive
- DoD 8570
- Voucher Credit Program
- group discounts
- Certification
- Resources
- List of Resources
- Top 20 List
- Top 25 Programming Errors
- 20 Coolest Jobs
- Application Security Procurement Language
- Top 10 Security Trends
- Top 5 Essential Log Reports
- Reading Room
- Webcasts
- AudioCasts
- WhatWorks
- Newsletters
- RSS Feeds
- Calendar Feeds
- Security Thought Leaders
- Security Policy Project
- Security+ Study Guide
- SANS Buyers Guide
- Security Tool Demos
- 2008 Salary Survey
- Vendor
- Portal
- Storm Center
- College
- Developer
- About
The most trusted source for computer security training, certification and research.
select a course
Washington, DC - December 11 - 18, 2009
Years of experience downloaded into your brain in 6 days.
-Chris Koutras, Titan Corp
Special
5 Day Course
(ISC)2® Certified Secure Software Lifecycle Professional (CSSLPCM) CBK® Education Program
Friday, December 11, 2009 - Tuesday, December 15, 2009 : 9am - 5pm(ISC)2 Certified Instructor
6 CPE Credits Per Day
It's no secret that security is not being addressed from a holistic perspective throughout the software lifecycle. Some 80% of all security breaches are application related equating to more than 226 million records being disclosed and fines reaching astronomical amounts. Together we have a solution that establishes industry standards and instills best practices in the software lifecycle (SLC).
The (ISC)2 5-day CSSLP CBK Education Program is the exclusive way to learn security best practices and industry standards for the software lifecycle - critical information to a CSSLP. This is where you will learn tools and processes on how security should be built into each phase of the software lifecycle. It will also detail security measures that need to take place beginning with the requirement phase, through software design all the way through software testing and ultimately disposal. This will ensure you're properly prepared to take on the constantly evolving vulnerabilities exposed in software development. Each software stakeholder is responsible for certain phase(s) of the SLC, but all phases must have security built into them. CSSLP is for all the stakeholders involved in the process. Each of the seven CSSLP Domains ( http://www.isc2.org/csslp-certification.aspx ) covers how to build security into the different phases.
The comprehensive (ISC)2 CSSLP CBK Education program covers the following domains:
- Secure Software Concepts - security implications in software development
- Secure Software Requirements - capturing security requirements in the requirements gathering phase
- Secure Software Design - translating security requirements into application design elements
- Secure Software Implementation/Coding - unit testing for security functionality and resiliency to attack, and developing secure code and exploit mitigation
- Secure Software Testing - integrated QA testing for security functionality and resiliency to attack
- Software Acceptance - security implication in the software acceptance phase
- Software Deployment, Operations, Maintenance and Disposal - security issues around steady state operations and management of software
Download a brochure to learn more about the CSSLP.
http://www.isc2.org/uploadedFiles/(ISC)2_Public_Content/Certification_Programs/CSSLP/CSSLP-Brochure-ForPDF.pdf
Please note that the price of tuition does NOT include the CSSLP exam.
http://www.isc2.org/uploadedFiles/Certification_Programs/exam_pricing.pdf
Who Should Attend:
- Software Architects
- Software Engineers/Designers
- Software Development Managers
- Requirements Analysts
- Project Managers
- Business and IT Managers
- Auditors
- Developers and Coders
- Security Specialists
- Auditors and Quality Assurance Managers
- Application Owners
The International Information Systems Security Certification Consortium, Inc. (ISC)2® is the globally recognized Gold Standard for certifying information security and software security professionals. Celebrating its 20th anniversary, (ISC)2 has certified nearly 65,000 information security and software security professionals in more than 130 countries. Based in Palm Harbor, Florida, USA, with offices in Washington, D.C., London, Hong Kong and Tokyo, (ISC)2 issues the Certified Information Systems Security Professional (CISSP®) and related concentrations, Certified Secure Software Lifecycle Professional (CSSLPCM), Certification and Accreditation Professional (CAP®), and Systems Security Certified Practitioner (SSCP®) credentials to those meeting necessary competency requirements. (ISC)2's CISSP and related concentrations, CAP, and the SSCP certifications are among the first information technology credentials to meet the stringent requirements of ANSI/ISO/IEC Standard 17024, a global benchmark for assessing and certifying personnel. (ISC)2 also offers a continuing professional education program, a portfolio of education products and services based upon (ISC)2's CBK®, a compendium of information security and software security topics. More information is available at www.isc2.org.
- © 2000-2009 The SANS™ Institute
- Web Privacy Policy | Web Contact |
- Press Room | Trademark Usage Policy