From the course: ISC2 Certified Secure Software Lifecycle Professional (CSSLP) (2023) Cert Prep
Unlock the full course today
Join today to access over 24,600 courses taught by industry experts.
Security metrics
From the course: ISC2 Certified Secure Software Lifecycle Professional (CSSLP) (2023) Cert Prep
Security metrics
- [Instructor] Measuring your security over time helps you improve your security software lifecycle management policies and procedures, and the fastest path to identifying and implementing these improvements is through security metrics. Peter Drucker, the well-known management consultant and author, was famously quoted as saying, "If you can't measure it, you can't improve it." That saying holds true when it comes to secure software lifecycle management. If your CISO were to ask you, "Is our application secure?" How would you answer that question? How would you even know if your idea of secure and the CISO's idea of secure were the same? Through metrics. That's how. One of the most popular software metrics is defects per line of code. With the right tools, this metric is easy to capture and measure, which accelerates your ability to address those defects and improve your code. Steve McConnell, author of Code Complete, recommends measuring code defects per thousand lines of code or…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
(Locked)
Secure architecture and design patterns3m 43s
-
(Locked)
Identifying and prioritizing controls6m 15s
-
(Locked)
Traditional application architectures7m 23s
-
(Locked)
Pervasive and ubiquitous computing6m 43s
-
(Locked)
Rich internet and mobile applications7m 9s
-
(Locked)
Cloud architectures7m 8s
-
(Locked)
Embedded system considerations8m 45s
-
(Locked)
Architectural risk assessments6m 59s
-
(Locked)
Component-based systems5m 2s
-
(Locked)
Security enhancing tools4m 8s
-
(Locked)
Cognitive computing4m 37s
-
(Locked)
Control systems8m 34s
-
(Locked)
-
-
(Locked)
Components of a secure environment8m 25s
-
(Locked)
Designing network and server controls4m 22s
-
(Locked)
Designing data controls6m 25s
-
(Locked)
Secure design principles and patterns5m 6s
-
(Locked)
Secure interface design6m 49s
-
(Locked)
Security architecture and design review3m 6s
-
(Locked)
Secure operational architecture3m 37s
-
(Locked)