Training

 

 

Popular Courses

Browse Our Free Resources

  • whitepapers
  • whitepapers
  • webinars
  • blogs

Our Locations

Training Centres

Vancouver, BC
Calgary, AB
Edmonton, AB
Toronto, ON
Ottawa, ON
Montreal, QC
Hunt Valley
Columbia

locations map

Calgary

550 6th Av SW
Suite 475
Calgary, AB
T2P 0S2

Toronto

821A Bloor Street West
Toronto, ON
M6G 1M1

Vancouver

409 Granville St
Suite 902
Vancouver, BC
V6C 1T2

U.S. Office

436 York Road
Suite 1
Jenkintown, PA
19046

Other Locations

Dallas, TX
Miami, FL

Home > Training > Security & Cyber Forensics > CSSLP Training

CSSLP Training

Course#: TP2531

This is a four day course coving all 8 domains of the CSSLP.

Duration

4 Days

Outline of TP2531 CSSLP Training

1. Secure Software Concepts

  • Core Concepts
  • Security Design Principles
  • Privacy (e.g., data anonymization, user content, disposition, test data management)
  • Governance, Risk and Compliance (GRC)
  • Software Development Methodologies (e.g., Waterfall, Agile)

2. Secure Software Requirements

  • Policy Decomposition (e.g., Internal and External Requirements)
  • Data Classification and Categorization
  • Functional Requirements (e.g., Use Cases and Abuse Cases)
  • Operational Requirements (e.g., how the software is deployed, operated, managed)

3. Secure Software Design

  • Design Processes
  • Design Considerations
  • Securing Commonly Used Architecture
  • Technologies

4. Secure Software Implementation/Coding

  • Declarative versus Imperative (Programmatic) Security
  • Vulnerability Databases/Lists (e.g., OWASP Top 10, CWE)
  • Defensive Coding Practices and Controls
  • Source Code and Versioning
  • Development and Build Environment (e.g., build tools, automatic build script)
  • Code/Peer Review
  • Code Analysis (e.g., static, dynamic)
  • Anti-tampering Techniques (e.g., code signing, obfuscation)
  • Testing Artifacts (e.g., strategies, plans, cases)
  • Testing for Security and Quality Assurance
  • Types of Testing
  • Impact Assessment and Corrective Action
  • Test Data Lifecycle Management (e.g., privacy, dummy data, referential integrity)

5. Software Acceptance

  • Pre-release and Pre-deployment
  • Post-release

6. Software Deployment, Operations, Maintenance and Disposal –

  • Installation and Deployment
  • Operations and Maintenance
  • Software Disposal (e.g., retirement, end of life policies, decommissioning)

7. Supply Chain and Software Acquisition

  • Supplier Risk Assessment (e.g., managing the enterprise risk of outsourcing)
  • Supplier Sourcing
  • Software Development and Test
  • Software Delivery, Operations and Maintenance
  • Supplier Transitioning (e.g., code escrow, data exports, contracts, disclosure)
We regularly offer classes in these and other cities. Atlanta, Austin, Baltimore, Calgary, Chicago, Cleveland, Dallas, Denver, Detroit, Houston, Jacksonville, Miami, Montreal, New York City, Orlando, Ottawa, Philadelphia, Phoenix, Pittsburgh, Seattle, Toronto, Vancouver, Washington DC.
*Your name:

*Your e-mail:

*Phone:

*Company name:

Additional notes:

We have received your message. A sales representative will contact you soon.

Thank you!.

more details
buy this course

Register for a courseware sample

It's simple, and free.

 

Thank You!

You will receive an email shortly containing a link to download the requested sample of the labs for this course.