[Owasp-brazilian] [Fwd: Official: CSSLP - New Credential Announcement]
Eduardo V. C. Neves
eduardo at camargoneves.com
Wed Oct 1 15:39:59 EDT 2008
Muito, mas está rolando uma discussão forte nas listas OWASP sobre o
assunto, o relacionamento com o (ISC)2 e muito mais. Um dos working sessions
do OWASP EU Summit será sobre certificações, vamos ver onde chegamos.
On 10/1/08 8:17 AM, "Fabricio Braz" <fabricio.braz at gmail.com> wrote:
> Nova certificação direcionada para software seguro. Parece interessante!
> Fabricio Braz
> Dear Valued Member,
> I am pleased to inform you that (ISC)2 launched a brand new certification
> program designed to validate secure software development
> practices and expertise and address the increasing number of application
> vulnerabilities. The need for education and certification
> in this area has become an overwhelming global concern in the industry and as
> a certifying body and proponent of continuing
> professional education we were presented the opportunity to provide a solution
> to address the issue.
> The Certified Secure Software Lifecycle Professional (CSSLP) aims to stem the
> proliferation of security vulnerabilities resulting
> from insufficient development processes by establishing best practices and
> validating an individual's competency in addressing
> security issues throughout the software lifecycle (SLC). It takes a holistic
> approach to software security. Code-language neutral,
> it will be applicable to anyone involved in the SLC, including analysts,
> developers, software engineers, software architects,
> project managers, software quality assurance testers and programmers. CSSLP is
> the only certification in the industry that ensures
> that security is considered throughout the entire software lifecycle.
> Subject areas covered by the CSSLP include the software lifecycle,
> vulnerabilities, risk, information security fundamentals and
> compliance. Candidates must demonstrate four years of professional experience
> in the SLC process or three years experience and a
> bachelor's degree (or regional equivalent) in an IT discipline.
> The seven domains of the CSSLP CBK are:
> Secure Software Concepts
> Secure Software Requirements
> Secure Software Design
> Secure Software Implementation/Coding
> Software Acceptance
> Software Deployment, Operations, Maintenance and Disposal
> Currently, (ISC)2 is seeking qualified professionals who meet experience and
> other requirements to participate in the assessment.
> For more information and to register for the Open CSSLP Experience Assessment,
> visit www.isc2.org/csslp <http://www.isc2.org/csslp> . You could become one of
> first CSSLP holders and be asked to contribute to the exam development process
> and assist in other program development tasks.
> Applications for the CSSLP Open Experience Assessment will be accepted from
> September 25, 2008 (EST) through March 31, 2009, with
> the first education seminars slated for Q2 2009 and first exam administration
> June 2009.
> A wide range of respected organizations have expressed their support for the
> CSSLP, including: Microsoft, Symantec, DSCI (NASSCOM),
> SANS, SRS International, Software Assurance Forum for Excellence in Code
> (SAFECode), Cisco, Xerox, SAIC, ISSA, and Frost & Sullivan.
> W. Hord Tipton CISSP-ISSEP, CAP, CISA
> Executive Director (ISC)2
> Please do not reply to this message. For questions or to contact (ISC)2,
> please visit http://www.isc2.org/contactus.
> Owasp-brazilian mailing list
> Owasp-brazilian at lists.owasp.org
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Owasp-brazilian