CISSP - Software Development Security - Section 8.2
Identify and apply security controls in software development ecosystems including programming languages, libraries, tool sets, IDE, runtime, CI/CD, and SOAR.
Identify and apply security controls across the software development ecosystem - including secure libraries, code repositories, IDE configurations, CI/CD pipelines, and application security testing - to prevent vulnerable code from reaching production. Recognise how automated application security testing in CI/CD reduces the cost of finding and fixing defects.
CI/CDsecure librariessoftware configuration managementcode repositoriesapplication security testing
More in this domain
Back to all Software Development Security objectives, or the CISSP cert hub.
Examworthy is not affiliated with or endorsed by (ISC)2. Original, blueprint-aligned practice material only.