Welcome to Scribd!

0% found this document useful (0 votes)

13 views

SSDLC Phase

Uploaded by

The document outlines the security activities that should be performed during each phase of the software development lifecycle (SDLC). During the plan phase, risks and policies are assessed. In requirements, security requirements and compliance are considered. The design phase includes threat modeling and architecture security reviews. Development focuses on secure coding practices. Testing employs security techniques like static analysis. Deployment assesses the environment. Maintenance implements monitoring and remediation.

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Implementing Zero Trust Architecture: An Enterprise Guide
From Everand
Implementing Zero Trust Architecture: An Enterprise Guide
Umair Akbar
Rating: 5 out of 5 stars
5/5 (1)
Manpower Req
Document5 pages
Manpower Req
anizm4u
No ratings yet
ACS-2821-001 Lecture Note 13 PDF
Document20 pages
ACS-2821-001 Lecture Note 13 PDF
John Mwaipopo
No ratings yet
Software Security
Document19 pages
Software Security
sowmya jonnalagadda
No ratings yet
Item Activity: Security Planning
Document44 pages
Item Activity: Security Planning
Jack Jackson
No ratings yet
Security Cyber Analyst v5
Document1 page
Security Cyber Analyst v5
lava.sky10
No ratings yet
Security Considerations in The System Development Life Cycle PDF
Document29 pages
Security Considerations in The System Development Life Cycle PDF
Prachi
No ratings yet
Building An Application Security Program - High Level View
Document6 pages
Building An Application Security Program - High Level View
Karthik Natarajan
No ratings yet
2.1 Software Systems Dependability-RevA
Document19 pages
2.1 Software Systems Dependability-RevA
s_omeone4us
No ratings yet
Shift Left An Approach Note 1668503162
Document11 pages
Shift Left An Approach Note 1668503162
mdlsom80
No ratings yet
Security Cyber Analyst v4
Document1 page
Security Cyber Analyst v4
lava.sky10
No ratings yet
Owasp Sdl-It PDF
Document23 pages
Owasp Sdl-It PDF
Syphax Bsd
No ratings yet
SDLC Training
Document10 pages
SDLC Training
siddu1008patil
No ratings yet
Agile Methods: "Build A Little, Test A Little, Field A Little" Principles
Document9 pages
Agile Methods: "Build A Little, Test A Little, Field A Little" Principles
Indrayani Rokde
No ratings yet
CISM Certification Study Guide Part 2
Document41 pages
CISM Certification Study Guide Part 2
adeel ashraf
100% (1)
Sen Chapter1 Notes
Document72 pages
Sen Chapter1 Notes
tucker5
No ratings yet
Job Description - Cyber Security Generalist Manager
Document2 pages
Job Description - Cyber Security Generalist Manager
USTP PPD TUMPAT
No ratings yet
SSE Module I
Document60 pages
SSE Module I
ksheik
No ratings yet
CSX Presentation Topic 1.4 To Knowledge Check
Document23 pages
CSX Presentation Topic 1.4 To Knowledge Check
C silia
No ratings yet
Kelompok 5 - Presentation Chapter 9 & 10
Document31 pages
Kelompok 5 - Presentation Chapter 9 & 10
derrick lee
No ratings yet
Unit V
Document87 pages
Unit V
NAGA LAKSHMI GAYATRI SAMANVITA POTTURU
No ratings yet
Lecture1 SSD Israfil
Document22 pages
Lecture1 SSD Israfil
Victor Imeh
No ratings yet
Chapter 7 (PE)
Document4 pages
Chapter 7 (PE)
tswat511
No ratings yet
4 Security Testing
Document57 pages
4 Security Testing
Harsh Rangwani
No ratings yet
Software Qualities
Document13 pages
Software Qualities
Stephen Maina
No ratings yet
Security Cyber Analyst v3
Document1 page
Security Cyber Analyst v3
lava.sky10
No ratings yet
Chapter 9 SQA Planning
Document44 pages
Chapter 9 SQA Planning
Bama Raja Segaran
No ratings yet
Software Engineering Unit 1
Document63 pages
Software Engineering Unit 1
Nida Khan
No ratings yet
Software Risk, Configuration Management
Document35 pages
Software Risk, Configuration Management
69hehe36
No ratings yet
UNIT-4 SOFTWARE QUALITY AND TESTING.pptx
Document19 pages
UNIT-4 SOFTWARE QUALITY AND TESTING.pptx
kiruthikaa T
No ratings yet
Unit-4 Software Quality and Testing.pptx
Document19 pages
Unit-4 Software Quality and Testing.pptx
kiruthikaa T
No ratings yet
Software Testing & Quality Controls: Semester V
Document47 pages
Software Testing & Quality Controls: Semester V
Muhammed Sajad K E
No ratings yet
Unit2 Product Assurance
Document42 pages
Unit2 Product Assurance
Jigar Shah
No ratings yet
Validation and Verification
Document58 pages
Validation and Verification
silkyc
No ratings yet
IS & F Lecture 4-5-6 Software Engineering and Information Security
Document32 pages
IS & F Lecture 4-5-6 Software Engineering and Information Security
Sadiholic
No ratings yet
Raj Sharath Gade
Document6 pages
Raj Sharath Gade
assetire
No ratings yet
CISSP Session 01 PDF
Document93 pages
CISSP Session 01 PDF
wfelicesc
No ratings yet
Software Development Life Cycle
Document17 pages
Software Development Life Cycle
chalu account
No ratings yet
Chapter 1
Document41 pages
Chapter 1
prathamesh.kulkarni22
No ratings yet
Cyber Security Framework V1.01
Document42 pages
Cyber Security Framework V1.01
santanujoshi
No ratings yet
Lokesh Shetty New Resume (DSM)
Document3 pages
Lokesh Shetty New Resume (DSM)
jakashudga
No ratings yet
UNIT V - Secuirty Architecture
Document3 pages
UNIT V - Secuirty Architecture
sundar
No ratings yet
Project Selection - Software Engineering
Document12 pages
Project Selection - Software Engineering
Bishnu Bhandari
No ratings yet
Information Technology in Business: DR Hemlata Gangwar
Document16 pages
Information Technology in Business: DR Hemlata Gangwar
Sandeep Patel
No ratings yet
Security Cyber Analyst v1
Document1 page
Security Cyber Analyst v1
lava.sky10
No ratings yet
Stqa Unit 1
Document61 pages
Stqa Unit 1
Anmol Bhardwaj
No ratings yet
SE Chapter3 HCCPDF 2021 08 12 22 15 49
Document119 pages
SE Chapter3 HCCPDF 2021 08 12 22 15 49
jj kjegr
No ratings yet
CompTIA Certification
Document4 pages
CompTIA Certification
askarya
No ratings yet
Secure Software Development Life Cycle
Document21 pages
Secure Software Development Life Cycle
rpschauhan2003
No ratings yet
2020 - Chapter 3 Product Assurance
Document60 pages
2020 - Chapter 3 Product Assurance
Seanleng Tan
No ratings yet
SKT Resume 21
Document3 pages
SKT Resume 21
nagarjuna
No ratings yet
16 August 2022 Isacawebinarppttemplatealigncorrected 1660664678457
Document27 pages
16 August 2022 Isacawebinarppttemplatealigncorrected 1660664678457
Sushil Vishwakarma
No ratings yet
IAPSC HANDOUT - Session8 - 2014campus Security in The 21 Century - 23march2015
Document12 pages
IAPSC HANDOUT - Session8 - 2014campus Security in The 21 Century - 23march2015
chetana
No ratings yet
Product Manager Security Training Reference Guide - The Product Manager Checklist
Document4 pages
Product Manager Security Training Reference Guide - The Product Manager Checklist
Venu Madhuri
No ratings yet
Se 1
Document27 pages
Se 1
Mahnoor Umar
No ratings yet
Cse 374
Document15 pages
Cse 374
tanay Hanra
No ratings yet
1 SDLC
Document16 pages
1 SDLC
manjiri510
No ratings yet
3.software Quality Assurance
Document22 pages
3.software Quality Assurance
arunlalds
No ratings yet
Software Engineering Fundamentals Svetlin Nakov
Document49 pages
Software Engineering Fundamentals Svetlin Nakov
SV Karthik
No ratings yet
The Chartered Test Engineer
From Everand
The Chartered Test Engineer
Zulk Shamsuddin
No ratings yet

SSDLC Phase

Uploaded by

Tanmay Navandar

0% found this document useful (0 votes)

13 views1 page

Original Description:

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Download as pdf or txt

0% found this document useful (0 votes)

13 views1 page

SSDLC Phase

Uploaded by

Tanmay Navandar

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Download as pdf or txt

Jump to Page

You are on page 1of 1

Search inside document

SDLC phase Security activity

Plan • Assess risks and security threat landscape

• Evaluate the potential impact of security incidents like
reputational risk to the business
• Identify security goals and establish security policies and
guidelines for the project

Requirements • Include security requirements as part of defining functional

requirements and conduct threat modelling
• Understand and incorporate compliance and regulatory
requirements

Document • Document security controls and processes in SRS document

• Assemble the information to prepare for audits, compliance
checks, and security reviews

Design • Engage in threat modelling

• Make security considerations an integral part of the
architecture plan
• Evaluate security impact of design phase choices such as
platform and UI

Development • Educate developers on secure coding practices

• Incorporate security testing tools in development process
• Evaluate software dependencies and mitigate potential security
risks
• Developers follow the coding guidelines as defined by their
organization and program-specific tools

Testing • Security focused testing techniques

• Perform security testing such as static analysis and interactive
application security testing
• Tested until quality standards are satisfied as defined in SRS

Deployment • Security assessment of deployment environment

• Release the beta version first and review customer feedbacks
and configurations for security.

Maintain • Implement monitoring to detect threats

• Be prepared to respond to vulnerabilities and intrusions with
remediations

Implementing Zero Trust Architecture: An Enterprise Guide
From Everand
Implementing Zero Trust Architecture: An Enterprise Guide
Umair Akbar
Rating: 5 out of 5 stars
5/5 (1)
Manpower Req
Document5 pages
Manpower Req
anizm4u
No ratings yet
ACS-2821-001 Lecture Note 13 PDF
Document20 pages
ACS-2821-001 Lecture Note 13 PDF
John Mwaipopo
No ratings yet
Software Security
Document19 pages
Software Security
sowmya jonnalagadda
No ratings yet
Item Activity: Security Planning
Document44 pages
Item Activity: Security Planning
Jack Jackson
No ratings yet
Security Cyber Analyst v5
Document1 page
Security Cyber Analyst v5
lava.sky10
No ratings yet
Security Considerations in The System Development Life Cycle PDF
Document29 pages
Security Considerations in The System Development Life Cycle PDF
Prachi
No ratings yet
Building An Application Security Program - High Level View
Document6 pages
Building An Application Security Program - High Level View
Karthik Natarajan
No ratings yet
2.1 Software Systems Dependability-RevA
Document19 pages
2.1 Software Systems Dependability-RevA
s_omeone4us
No ratings yet
Shift Left An Approach Note 1668503162
Document11 pages
Shift Left An Approach Note 1668503162
mdlsom80
No ratings yet
Security Cyber Analyst v4
Document1 page
Security Cyber Analyst v4
lava.sky10
No ratings yet
Owasp Sdl-It PDF
Document23 pages
Owasp Sdl-It PDF
Syphax Bsd
No ratings yet
SDLC Training
Document10 pages
SDLC Training
siddu1008patil
No ratings yet
Agile Methods: "Build A Little, Test A Little, Field A Little" Principles
Document9 pages
Agile Methods: "Build A Little, Test A Little, Field A Little" Principles
Indrayani Rokde
No ratings yet
CISM Certification Study Guide Part 2
Document41 pages
CISM Certification Study Guide Part 2
adeel ashraf
100% (1)
Sen Chapter1 Notes
Document72 pages
Sen Chapter1 Notes
tucker5
No ratings yet
Job Description - Cyber Security Generalist Manager
Document2 pages
Job Description - Cyber Security Generalist Manager
USTP PPD TUMPAT
No ratings yet
SSE Module I
Document60 pages
SSE Module I
ksheik
No ratings yet
CSX Presentation Topic 1.4 To Knowledge Check
Document23 pages
CSX Presentation Topic 1.4 To Knowledge Check
C silia
No ratings yet
Kelompok 5 - Presentation Chapter 9 & 10
Document31 pages
Kelompok 5 - Presentation Chapter 9 & 10
derrick lee
No ratings yet
Unit V
Document87 pages
Unit V
NAGA LAKSHMI GAYATRI SAMANVITA POTTURU
No ratings yet
Lecture1 SSD Israfil
Document22 pages
Lecture1 SSD Israfil
Victor Imeh
No ratings yet
Chapter 7 (PE)
Document4 pages
Chapter 7 (PE)
tswat511
No ratings yet
4 Security Testing
Document57 pages
4 Security Testing
Harsh Rangwani
No ratings yet
Software Qualities
Document13 pages
Software Qualities
Stephen Maina
No ratings yet
Security Cyber Analyst v3
Document1 page
Security Cyber Analyst v3
lava.sky10
No ratings yet
Chapter 9 SQA Planning
Document44 pages
Chapter 9 SQA Planning
Bama Raja Segaran
No ratings yet
Software Engineering Unit 1
Document63 pages
Software Engineering Unit 1
Nida Khan
No ratings yet
Software Risk, Configuration Management
Document35 pages
Software Risk, Configuration Management
69hehe36
No ratings yet
UNIT-4 SOFTWARE QUALITY AND TESTING.pptx
Document19 pages
UNIT-4 SOFTWARE QUALITY AND TESTING.pptx
kiruthikaa T
No ratings yet
Unit-4 Software Quality and Testing.pptx
Document19 pages
Unit-4 Software Quality and Testing.pptx
kiruthikaa T
No ratings yet
Software Testing & Quality Controls: Semester V
Document47 pages
Software Testing & Quality Controls: Semester V
Muhammed Sajad K E
No ratings yet
Unit2 Product Assurance
Document42 pages
Unit2 Product Assurance
Jigar Shah
No ratings yet
Validation and Verification
Document58 pages
Validation and Verification
silkyc
No ratings yet
IS & F Lecture 4-5-6 Software Engineering and Information Security
Document32 pages
IS & F Lecture 4-5-6 Software Engineering and Information Security
Sadiholic
No ratings yet
Raj Sharath Gade
Document6 pages
Raj Sharath Gade
assetire
No ratings yet
CISSP Session 01 PDF
Document93 pages
CISSP Session 01 PDF
wfelicesc
No ratings yet
Software Development Life Cycle
Document17 pages
Software Development Life Cycle
chalu account
No ratings yet
Chapter 1
Document41 pages
Chapter 1
prathamesh.kulkarni22
No ratings yet
Cyber Security Framework V1.01
Document42 pages
Cyber Security Framework V1.01
santanujoshi
No ratings yet
Lokesh Shetty New Resume (DSM)
Document3 pages
Lokesh Shetty New Resume (DSM)
jakashudga
No ratings yet
UNIT V - Secuirty Architecture
Document3 pages
UNIT V - Secuirty Architecture
sundar
No ratings yet
Project Selection - Software Engineering
Document12 pages
Project Selection - Software Engineering
Bishnu Bhandari
No ratings yet
Information Technology in Business: DR Hemlata Gangwar
Document16 pages
Information Technology in Business: DR Hemlata Gangwar
Sandeep Patel
No ratings yet
Security Cyber Analyst v1
Document1 page
Security Cyber Analyst v1
lava.sky10
No ratings yet
Stqa Unit 1
Document61 pages
Stqa Unit 1
Anmol Bhardwaj
No ratings yet
SE Chapter3 HCCPDF 2021 08 12 22 15 49
Document119 pages
SE Chapter3 HCCPDF 2021 08 12 22 15 49
jj kjegr
No ratings yet
CompTIA Certification
Document4 pages
CompTIA Certification
askarya
No ratings yet
Secure Software Development Life Cycle
Document21 pages
Secure Software Development Life Cycle
rpschauhan2003
No ratings yet
2020 - Chapter 3 Product Assurance
Document60 pages
2020 - Chapter 3 Product Assurance
Seanleng Tan
No ratings yet
SKT Resume 21
Document3 pages
SKT Resume 21
nagarjuna
No ratings yet
16 August 2022 Isacawebinarppttemplatealigncorrected 1660664678457
Document27 pages
16 August 2022 Isacawebinarppttemplatealigncorrected 1660664678457
Sushil Vishwakarma
No ratings yet
IAPSC HANDOUT - Session8 - 2014campus Security in The 21 Century - 23march2015
Document12 pages
IAPSC HANDOUT - Session8 - 2014campus Security in The 21 Century - 23march2015
chetana
No ratings yet
Product Manager Security Training Reference Guide - The Product Manager Checklist
Document4 pages
Product Manager Security Training Reference Guide - The Product Manager Checklist
Venu Madhuri
No ratings yet
Se 1
Document27 pages
Se 1
Mahnoor Umar
No ratings yet
Cse 374
Document15 pages
Cse 374
tanay Hanra
No ratings yet
1 SDLC
Document16 pages
1 SDLC
manjiri510
No ratings yet
3.software Quality Assurance
Document22 pages
3.software Quality Assurance
arunlalds
No ratings yet
Software Engineering Fundamentals Svetlin Nakov
Document49 pages
Software Engineering Fundamentals Svetlin Nakov
SV Karthik
No ratings yet
The Chartered Test Engineer
From Everand
The Chartered Test Engineer
Zulk Shamsuddin
No ratings yet

SSDLC Phase

Uploaded by

Copyright:

Available Formats

You might also like

SSDLC Phase

Uploaded by

Document Information

Original Description:

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

SSDLC Phase

Uploaded by

Copyright:

Available Formats

SDLC phase Security activity

Plan • Assess risks and security threat landscape

Requirements • Include security requirements as part of defining functional

Document • Document security controls and processes in SRS document

Design • Engage in threat modelling

Development • Educate developers on secure coding practices

Testing • Security focused testing techniques

Deployment • Security assessment of deployment environment

Maintain • Implement monitoring to detect threats

You might also like