- Training
- Training Live Events
- Training Without Travel
- SANS Courses
- Certified Instructors
- Career Roadmap
- Training Calendars
- SANS @Home
- SANS OnDemand
- Community SANS
- SANS Mentor Program
- SANS Onsite
- SANS SelfStudy
- SANS Partnership Series
- SANS Workshop Series
- Webcasts
- Work Study
- Events Archive
- DoD 8570
- Voucher Credit Program
- group discounts
- Certification
- Resources
- Vendor
- Portal
- Storm Center
- College
- Developer
- About
the most trusted source for computer security training, certification and research
select a course
- Training Event
- Calendar of Events
- Registration Info
- Exam Fee
- Vendor Events
- Hotel & Travel Info
- General Info
- Faculty
- Vendor Expo
- Special Events
- SANS @Night
- Brochure (PDF)
SANS always provides the best training and trainers with a vast amount of knowledge.
-Mike Brennan, SSIC
GIAC Secure Software Programmer (GSSP) Certification Exam
The GIAC Secure Software Programmer (GSSP) Certification Exam was developed in a joint effort involving the SANS Institute, CERT/CC, several US government agencies, and leading companies in the US, Japan, India, and Germany. These exams are an essential response to the rapidly increasing number of targeted attacks that are focusing on application vulnerabilities. They help organizations meet four objectives:
- Identify shortfalls in security knowledge of in-house programmers and help those individuals close the gaps.
- Ensure outsourced programmers have adequate secure coding skills.
- Select new employees who will not need remedial training in secure programming.
- Ensure each major development project has at least one person with advanced secure programming skills.
GSSP Overview:
Programmers can demonstrate that they know the common security flaws found in Java and C programming, and how to avoid the problems, by passing the GSSP exams.
Certification Exams
GIAC Secure Software Programmer (GSSP) Exam - Java
GIAC Secure Software Programmer (GSSP) Exam - C
Blueprints for the exams are located at the following links:
Exam Information
The GIAC Secure Software Programmer (GSSP) Certification Exam is administered at established proctored testing facilities. The exam consists of 100 multiple-choice questions, is open book and has a 4 hour time limit. For detailed information on the GIAC proctor program, please see http://www.giac.org/proctor/.
Sample tests and a complete description of the Secure Coding Initiative can be found at http://www.sans-ssi.org
Certification
Those who gain passing scores at the foundation level will earn the GIAC Secure Software Programmer (GSSP) certification. A designation will follow the letters reflecting the language in which the certification was earned. For example, a programmer who passes the Java exam would receive the GSSP-J designation.
The GSSP certification will be valid for four years. You will become eligible to apply for re-certification one (1) year prior to your certification expiration. You must register for recertification before your certification expiration date. To re-certify, you must pass the current examination being used for initial certification.