The CSSLP Prep Guide: Mastering the Certified Secure Software Lifecycle Professional

2.67 avg rating
( 6 ratings by Goodreads )
9780470461907: The CSSLP Prep Guide: Mastering the Certified Secure Software Lifecycle Professional

The first test prep guide for the new ISC2 Certified Secure Software Lifecycle Professional exam

The CSSLP (Certified Secure Software Lifecycle Professional) is a new certification that incorporates government standards and best practices for secure software development. It emphasizes the application of secure software methodologies during the software development cycle. If you're an IT professional, security professional, software developer, project manager, software assurance tester, executive manager or employee of a government agency in a related field, your career may benefit from this certification.

Written by experts in computer systems and security, The CSSLP Prep Guide thoroughly covers all aspects of the CSSLP certification exam, with hundreds of sample test questions and answers available on the accompanying CD.

  • The Certified Secure Software Lifecycle Professional (CSSLP) is an international certification incorporating new government, commercial, and university derived secure software development methods; it is a natural complement to the CISSP credential
  • The study guide covers the seven domains of the CSSLP Common Body of Knowledge (CBK), namely Secure Software Concepts, Secure Software Requirements, Secure Software Design, and Secure Software Implementation/Coding and Testing,Secure Software Testing, Software Acceptance, and Software Deployment, Operations, Maintenance and Disposal
  • Provides in-depth exploration and explanation of the seven CSSLP domains
  • Includes a CD with hundreds of practice exam questions and answers

The CSSLP Prep Guide prepares you for the certification exam and career advancement.

"synopsis" may belong to another edition of this title.

From the Back Cover:

A valuable resource for preparing to take the Certified Secure Software Lifecycle Professional (CSSLP)

The steady rise of losses incurred by organizations from both insider and outsider attacks can, in large part, be attributed to a grave lack of software security. This increased abuse of software vulnerabilities has prompted government-imposed regulatory and compliance requirements. Enter the CSSLP exam. As a natural complement to the Certified Information Systems Security Professional (CISSP) credential, the CSSLP is a globally recognized standard of achievement and establishes an industry standard regarding the holder's knowledge and understanding for applying best practices when delivering secure software. This essential guide prepares you for taking the CSSLP examination while enforcing the belief that secure software should be an integral part of the software lifecyle directly from conception.

Ronald L. Krutz and Alexander J. Fry walk you through the seven domains within the CSSLP's Common Body of Knowledge (CBK): secure software concepts, secure software requirements, secure software design, secure software implementation/coding, secure software testing, software acceptance, and lastly, software deployment, operations, maintenance, and disposal. They address the fundamental security concepts of confidentiality, integrity, availability, authentication, authorization, and auditing, and convey the key concepts and principles that the CSSLP embodies. The combination of this essential information along with hundreds of featured review questions thoroughly prepares you for taking the CSSLP examination.

The CSSLP Prep Guide covers vital topics in the area of software security in addition to imparting beneficial insight for taking the Certification exam, and covers topics such as:

  • Translating security requirements into application design elements

  • Testing for security functionality and resiliency to attacks

  • Developing secure code

  • Identifying and mitigating software security abuse

  • Dealing with security implications during software development

  • Countering the increasing threats against software vulnerabilities

About the Author:

Ronald l. Krutz, PhD, PE, CISSP, ISSEP, is a senior information system security consultant. He has more than thirty years of experience in distributed computing systems, computer architectures, real-time systems, information assurance methodologies, and information security training. He holds B.S., M.S., and Ph.D. degrees in electrical and computer engineering and is the author of bestselling texts in the area of information system security.

Alexander J. Fry, CSSLP, CISSP, ISSAP, ISSEP, LPT, is Principal Security Consultant at Strong Crypto LLC. He is active in the software assurance community and involved in web application security education and training.

"About this title" may belong to another edition of this title.

Buy New View Book
List Price: US$ 65.00
US$ 131.44

Convert Currency

Shipping: US$ 1.99
Within U.S.A.

Destination, Rates & Speeds

Add to Basket

Top Search Results from the AbeBooks Marketplace


Krutz, Ronald L., Fry, Alexander J.
Published by Wiley (2009)
ISBN 10: 047046190X ISBN 13: 9780470461907
New Paperback Quantity Available: 1
Murray Media
(North Miami Beach, FL, U.S.A.)

Book Description Wiley, 2009. Paperback. Book Condition: New. Never used!. Bookseller Inventory # P11047046190X

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 131.44
Convert Currency

Add to Basket

Shipping: US$ 1.99
Within U.S.A.
Destination, Rates & Speeds