The accreditors of this session require that you periodically check in to verify that you are still attentive.
Please click the button below to indicate that you are.
While a secure development lifecycle (SDLC) is centered around education, it goes much beyond the simple ‘how to program securely’ to include:
-Training, including an overview of the process -Threat modeling, including both deployment and functionality -Secure coding standards and reviews -Testing / analysis such as static, dynamic, fuzz and penetration testing -Supply chain security / monitoring that incorporates component tracking and build/development environment security -Incident response to improve reaction times
This session will conclude with a discussion on how to measure your SDLC capability and maturity. As we delve into each of these areas, the attendee will gain insights into what is now required to be successful with an SDLC.