adporn.net Security documentation - ISC2 Certified Secure Software Lifecycle Professional (CSSLP) (2023) Cert Prep Video Tutorial | LinkedIn Learning, formerly Lynda.com

LinkedIn and 3rd parties use essential and non-essential cookies to provide, secure, analyze and improve our Services, and to show you relevant ads (including professional and job ads) on and off LinkedIn. Learn more in our Cookie Policy.

Select Accept to consent or Reject to decline non-essential cookies for this use. You can update your choices at any time in your settings.

Start free trial Sign in

From the course: ISC2 Certified Secure Software Lifecycle Professional (CSSLP) (2023) Cert Prep

Unlock the full course today

Join today to access over 24,400 courses taught by industry experts.

Security documentation

Security documentation

From the course: ISC2 Certified Secure Software Lifecycle Professional (CSSLP) (2023) Cert Prep

Start my 1-month free trial Buy for my team

Security documentation

“

- [Instructor] An artifact that results from consistent execution of your desired security controls is security documentation, but that documentation rarely generates itself. As a CSSLP, you should be aware of the software security documentation that you'll want to generate and maintain. The documentation that you and your development teams build out is going to be largely influenced by your development methodology. If you're a waterfall shop using a predictive methodology, then there will likely be a lot of documentation generated by various teams before anyone begins coding. But if you're an agile shop using an adaptive methodology, then you may have to work a bit harder to make sure that you have the documentation in place to help you ensure that the software is appropriately secured. Most software documentation falls into one of two categories. Product documentation is created to capture details regarding how the finished product works. Process documentation is all the other…

Contents