(ISC)² Official Certified Secure Software Lifecycle Professional (CSSLP®)

Cycubix Logo

Organisation profile

Cycubix offers a business centric approach to addressing the security of business applications. Working with Cycubix, clients produce applications that drive efficiency and enhance customer experience without compromising confidential valuable corporate or client information. From definition and development through to deployment and management, Cycubix provides the insight, technologies and training essential to building secure applications that are critical to the needs of the business.

Training aim

The CSSLP® certification validates that software professionals have the expertise to incorporate security practices into the software development lifecycle, from design to testing and deployment.

Learning objectives

Understand the security controls required during the SDLC.

Understand the techniques of conducting threat modelling, as well as the countermeasures that mitigate risk.

Know the coding standards that help avoid introducing flaws that can lead to security vulnerabilities, understand common software vulnerabilities and countermeasures, and apply security testing tools.

Release security updates when appropriate.

Establish a process for interacting with suppliers.  

Course outline

This  seminar provides a comprehensive review of application security concepts and industry best practices, covering the 8 domains of the CSSLP CBK:

1. Secure Software Concepts

2. Security Software Requirements

3. Secure Software Design

4. Secure Software Implementation/Coding

5. Secure Software Testing

6. Software Acceptance

7. Software Deployment, Operations, Maintenance and Disposal

8. Supply Chain and Software Acquisition

Trainer's profile

Fabio Cerullo is an official certified instructor for (ISC)², the global leader in information security education and certification. Fabio has over 14 years of experience in the information security field gained across a diverse range of industries ranging from financial and government institutions to software houses and start-ups. He holds a Msc in Computer Engineering from UCA and the SSCP, CISSP, CSSLP & CCSP certifications from (ISC)².

Course duration

40 hours

Assessment & certification

Certified Secure Software Lifecycle Professional (CSSLP®)

For further details see ISC2 Credentialing Process: https://www.isc2.org

Who should attend

The CSSLP is ideally suited to professionals working in positions such as, but not limited to: Software developers, Engineers and architects, Project managers, Software QA, Software testers, etc