CSSLP Cert Prep: 7 Software Deployment, Operations, and Maintenance
1h 22mIntermediate2021-01-19
Authors

Jerod Brennen
Security Architect, Advisor, Speaker, Teacher
Course details
The Certified Secure Software Lifecycle Professional (CSSLP) is a globally recognized certification from (ISC)2. In this course, part seven in an eight-part series, instructor Jerod Brennen provides insights and context around the seventh domain of the CSSLP certification exam: Secure Software Deployment, Operations, Maintenance. Jerod teaches you the essential components of an operational risk analysis. He shows you how to securely store and manage credentials, secrets, keys, certificates, and configurations. He covers bootstrapping, environment hardening, and applying the principle of least privilege. Then he steps you through the security testing you should perform post-deployment. He discusses obtaining the security approval needed to operate your production app and performing information security continuous monitoring (ISCM). In conclusion, Jerod walks you through how to maintain your software, including how to scan, track, and triage vulnerabilities.
Skills covered
Software DeploymentCert PrepNetwork and System Administration
Concepts
0. Introduction
- 01 - Secure software deployment, operations, and maintenance
1. Deploying Your Software
- 02 - Performing an operational risk analysis
- 03 - Releasing software securely
- 04 - Storing and managing security data
- 05 - Hardening and least privilege
- 06 - Ensuring secure installation
- 07 - Postdeployment security testing
2. Shifting into Operations
- 08 - Obtaining security approval to operate
- 09 - Continous security monitoring
- 10 - Support incident response
- 11 - Support continuity of operations
- 12 - Service-level objectives and agreements
3. Maintaining Your Software
- 13 - Patch management
- 14 - Vulnerability management
- 15 - Runtime protection
Conclusion
- 16 - Next steps
Related courses
- CSSLP Cert Prep: 4 Secure Software Implementation
- CSSLP Cert Prep: 1 Secure Software Concepts
- CSSLP Cert Prep: 2 Secure Software Requirements
- CSSLP Cert Prep: 3 Secure Software Design
- CSSLP Cert Prep: 5 Secure Software Testing
- CSSLP Cert Prep: 6 Secure Lifecycle Management
- CSSLP Cert Prep: 8 Supply Chain and Software Acquisition
- CSSLP Cert Prep: The Basics