Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

 Initiation: Security User Stories Identified
 Planning: Incorporate Risk identified in System
Architecture and Design...
Step 1. System Characterization
Step 2. Threat Identification
Step 3. Vulnerability Identification
Step 4. Control Analysi...

Risk Management Steps Defined under
PMI
Risk Management Process Groups : Input – process –
Output
- Outputs: (Risk Regis...

 This is Evolving presentation: Will add more details
Refer Blog/presentation Read by almost 50,000
people. More detail...
Upcoming SlideShare
Loading in …5
×

Security and Risk management in SDLC Software development Life cycle

3,063 views

Published on

Security,Software development life cycle, SDLC, Risk Management,NIST,TOGAF,PMI,COBIT

Published in: Software
  • Be the first to comment

  • Be the first to like this

Security and Risk management in SDLC Software development Life cycle

  1. 1.   Initiation: Security User Stories Identified  Planning: Incorporate Risk identified in System Architecture and Design.  Implementation: Assess Identified Risk on Implementation.  Monitoring & Control: Changes, CR (Change request must be reauthorized.  Closing: Dispose off unwanted software, hardware & information Components. Security Risk Management in SDLC
  2. 2. Step 1. System Characterization Step 2. Threat Identification Step 3. Vulnerability Identification Step 4. Control Analysis Step 5. Likelihood Determination Step 6. Impact Analysis Step 7. Risk Determination Step 8. Control Recommendations Step 9. Result determination.
  3. 3.  Risk Management Steps Defined under PMI Risk Management Process Groups : Input – process – Output - Outputs: (Risk Register, Risk Management plan, Risk Response, Communication Management plan, Quantitative and Qualitative Risk Assessment and Mitigation) This is Almost similar To NIST methodology discussed above. PMI groups deals with Project management in general. Whereas in NIST RM steps are Generic and platform independent to work across multiple methodology.
  4. 4.   This is Evolving presentation: Will add more details Refer Blog/presentation Read by almost 50,000 people. More details and write up can be found at:  http://www.productmanagementview.wordpress.com  http://projectmanagerview.wordpress.com  http://sandyclassic.wordpress.com More Details

×