Certified Secure Software Lifecycle Professional

The Certified Secure Software Lifecycle Professional (CSSLP) is the only certification in the industry that ensures security is considered throughout the entire lifecycle. 

It's no secret that security is not being addressed from a holistic perspective throughout the software lifecycle. Some 80% of all security breaches are application related equating to more than 226 million records being disclosed and fines reaching astronomical amounts. Together we are building security into the lifecycle, one CSSLP at a time.

• CSSLP is for everyone involved in the Software Lifecycle with at least 4 years experience.
• Learn more about who should become a CSSLP?
• New! Download a brochure now to learn more about the CSSLP.
  
  

The following domains make up the CSSLP CBK focus on the need for building security into the SDLC:

• Secure Software Concepts - security implications in software development and for software supply chain integrity 
• Secure Software Requirements - capturing security requirements in the requirements gathering phase
• Secure Software Design - translating security requirements into application design elements
• Secure Software Implementation/Coding - unit testing for security functionality and resiliency to attack, and developing secure code and exploit mitigation
• Secure Software Testing - integrated QA testing for security functionality and resiliency to attack
• Software Acceptance - security implication in the software acceptance phase
• Software Deployment, Operations, Maintenance and Disposal - security issues around steady state operations and management of software