Certified Secure Software Lifecycle Professional (CSSLP®)
Length 5 days
Course overview
View dates &
book now
Why study this course
Gain the core knowledge and learn the best security practices for the software development lifecycle (SDLC) and prepare for globally recognised CSSLP® secure software development certification. It is a proven way to build your career and better incorporate security practices into each phase of the SDLC.
CSSLP certification recognises leading application security skills. It shows employers and peers you have the advanced technical skills and knowledge necessary for authentication, authorisation and auditing throughout the SDLC using best practices, policies and procedures established by the cybersecurity experts at ISC2.
CSSLP meets the stringent requirements of ANSI/ISO/IEC Standard 17024.
Please note: The exam is not included in the course fee but can be purchased separately. Please contact us for a quote.
Can’t see the video above? Click here to open it in a new screen.
The Certified Secure Software Lifecycle Professional (CSSLP) validates that software professionals have the expertise to incorporate security practices – authentication, authorisation and auditing – into each phase of the software development lifecycle (SDLC), from software design and implementation to testing and deployment.
ISC2 at Lumify Work
ISC2: The world’s leading cyber security and IT security professional organisation. Lumify Work is one of only a few select training providers in Australia with campuses in New Zealand and the Philippines. We offer official ISC2 courses and training materials.
The ISC2 CSSLP is ideal for software development and security professionals responsible for applying best practices to each phase of the SDLC – from software design and implementation to testing and deployment – including those in the following positions:
Software Architect
Software Engineer
Software Developer
Application Security Specialist
Software Program Manager
Quality Assurance Tester
Penetration Tester
Software Procurement Analyst
Project Manager
Security Manager
IT Director/Manager
Course subjects
The broad spectrum of topics included in the CSSLP Common Body of Knowledge (CBK®) ensure its relevancy across all disciplines in the field of information security.
This course provides in-depth coverage of the eight domains required to prepare for the CSSLP exam. Refer to the CSSLP Exam Outline for a deeper dive into the CSSLP domains.
1. Secure Software Concepts
Core Concepts
Security Design Principles
2. Secure Software Requirements
Define Software Security Requirements
Identify and Analyse Compliance Requirements
Identify and Analyse Data Classification Requirements
Runtime Protection (e.g., Runtime Application Self-Protection (RASP), Web Application Firewall (WAF), Address Space Layout Randomisation (ASLR))
Support Continuity of Operations
Integrate Service Level Objectives (SLO) and Service Level Agreements (SLA) (e.g., maintenance, performance, availability, qualified personnel)
8. Secure Software Supply Chain
Implement Software Supply Chain Risk Management
Analyse Security of Third-Party Software
Verify Pedigree and Provenance
Ensure Supplier Security Requirements in the Acquisition Process
Support contractual requirements (e.g., Intellectual Property (IP) ownership, code escrow, liability, warranty, End-User License Agreement (EULA), Service Level Agreements (SLA))
Prerequisites
To qualify for this certification, you must pass the exam and have at least four years of cumulative, paid work experience as a software development lifecycle professional in one or more of the eight domains of the ISC2 CSSLP Common Body of Knowledge.
A relevant four-year degree can satisfy one year of required experience. Learn more about the ISC2 CSSLP Experience Requirements.
A candidate who doesn’t have the required experience to become a CSSLP may become an Associate of ISC2 by successfully passing the CSSLP exam. An Associate of ISC2 can then accumulate the necessary work experience to achieve full certification.
FREE E-BOOK: Meeting the Cyber Security Challenge
What are the top challenges in cyber security? Gain insight into how organisations can address challenges through cyber security training programs that build a skilled and diverse cyber workforce.
The supply of this course by Lumify Work is governed by the booking terms and conditions. Please read the terms and conditions carefully before enrolling in this course, as enrolment in the course is conditional on acceptance of these terms and conditions.
Request Course Information
Personalise your schedule with Lumify USchedule
Interested in a course that we have not yet scheduled? Get in touch, and ask for your preferred date and time. We can work together to make it happen.
Continue your learning experience online with Lumify Plus
Lumify Plus (formerly DDLS Plus) is your online learning pathway to extend knowledge beyond courses. Get resources to help you practice what you learned and prepare for future courses, exams and certifications.
Lumify Work offers cyber security training to cater for all levels of your organisation - from front-line staff to highly experienced senior cyber security professionals. We’ve partnered with the leading vendors to provide the most comprehensive cyber security training solutions in Australasia.