Uploaded byAvancercorp
PPTX, PDF142 views

What’s making way for secure sdlc

Organizations are increasingly incorporating security practices into the software development lifecycle (SDLC) to improve security and reduce expensive post-release fixes. The SDLC stages now include considering security in requirements, defining security parameters in design, building with security controls, and conducting penetration testing. Implementing a secure SDLC brings security practices into software development from the beginning to prevent vulnerabilities and ensure compliance with standards.

Embed presentation

Download to read offline
What’s making way for Secure SDLC?
Introduction Organizations are increasingly incorporating changes in the Software Development Life Cycle (SDLC) in order to improve security posture and create a robust IT System. These changes are aimed to bring security at software development stage itself, rather than incurring expensive fixes for IT vulnerabilities post-implementation of the software. Traditionally, SDLC was focused towards fulfilling specific business requirements, functions and features in a step-down manner.
stages • Inception stage. • Elaboration stage. • Construction stage. • Production stage.
Inception stage • Business Requirement Document is prepared keeping security aspects in consideration and foresee security concerns from a third-party aspect.
Elaboration stage • Based on Technical Requirement Document received from inception teams, analysis and design ensures that the security parameters are defined and considered.
Construction stage • Achieve greater security controls by building tools in line with functional and security vulnerabilities against industry’s security standards, such as OWASP.
Production stage • Running a penetration testing on scheduled basis for the system for any security threats and cyber vulnerabilities.
Use of SDLC • SDLC provides a proper flow to entire process of software development. • Bring security in SDLC process because a stitch in time saves nine. • Layer of vulnerability that emanates from open source library. • Disruption in information systems may need greater controls and checks.
Conclusion • As SDLC incorporates all the necessary steps required for the development of a software or application, organizations that include the extra step of security in the SDLC, gain in the longer run. Deploying Secure SDLC ensures that the problems emanating in system development and security are addressed, discouraging incurring costly solutions at the post-production stages or worse paying huge settlement amounts due to data thefts and privacy breaches.

More Related Content

PPTX
Intro to Security in SDLC
byTjylen Veselyj
 
PPTX
24may 1200 valday eric anklesaria 'secure sdlc – core banking'
byPositive Hack Days
 
PPTX
Secure Software Development Life Cycle
byMaurice Dawson
 
PPTX
Dmitriy Desyatkov "Secure SDLC or Security Culture to be or not to be"
byWrikeTechClub
 
PPTX
Secure Software Development Lifecycle
by1&1
 
PPTX
Integrating Security Across SDLC Phases
byIshrath Sultana
 
PPTX
Information Security and the SDLC
byBDPA Charlotte - Information Technology Thought Leaders
 
PPTX
Agile and Secure SDLC
byNazar Tymoshyk, CEH, Ph.D.
 
Intro to Security in SDLC
byTjylen Veselyj
 
24may 1200 valday eric anklesaria 'secure sdlc – core banking'
byPositive Hack Days
 
Secure Software Development Life Cycle
byMaurice Dawson
 
Dmitriy Desyatkov "Secure SDLC or Security Culture to be or not to be"
byWrikeTechClub
 
Secure Software Development Lifecycle
by1&1
 
Integrating Security Across SDLC Phases
byIshrath Sultana
 
Information Security and the SDLC
byBDPA Charlotte - Information Technology Thought Leaders
 
Agile and Secure SDLC
byNazar Tymoshyk, CEH, Ph.D.
 

What's hot

ODP
Basic of SSDLC
byChitpong Wuttanan
 
PDF
Software security, secure software development in the age of IoT, smart thing...
byLabSharegroup
 
PPT
The security sdlc
byMohamed Siraj
 
PPT
Secure by design and secure software development
byBill Ross
 
PDF
Security in the Software Development Life Cycle (SDLC)
byFrances Coronel
 
PDF
Are Agile And Secure Development Mutually Exclusive?
bySource Conference
 
PPTX
Secure SDLC Framework
byRishi Kant
 
PDF
The What, Why, and How of DevSecOps
byCprime
 
PDF
Software Development Life Cycle – Managing Risk and Measuring Security
byThomas Malmberg
 
PDF
Security Development Lifecycle Tools
byn|u - The Open Security Community
 
PPTX
Security Culture from Concept to Maintenance: Secure Software Development Lif...
byDilum Bandara
 
PDF
Applicaiton Security - Building The Audit Program
byMichael Davis
 
PPTX
Security Services and Approach by Nazar Tymoshyk
bySoftServe
 
PDF
Sumeet Mandloi: Robust Security Testing Framework
byAnna Royzman
 
PDF
Devops security-An Insight into Secure-SDLC
bySuman Sourav
 
PDF
5 Important Secure Coding Practices
byThomas Kurian Ambattu,CRISC,ISLA-2011 (ISC)²
 
PPTX
ОЛЬГА АКСЬОНЕНКО «Безпечна розробка програмного забезпечення в Agile проектах...
byQADay
 
PPTX
Crafting Super-Powered Risk Assessments by Digital Defense Inc & Veracode
byDigital Defense Inc
 
PDF
Application Security Risk Assessment
byThomas Kurian Ambattu,CRISC,ISLA-2011 (ISC)²
 
PDF
A Successful SAST Tool Implementation
byCheckmarx
 
Basic of SSDLC
byChitpong Wuttanan
 
Software security, secure software development in the age of IoT, smart thing...
byLabSharegroup
 
The security sdlc
byMohamed Siraj
 
Secure by design and secure software development
byBill Ross
 
Security in the Software Development Life Cycle (SDLC)
byFrances Coronel
 
Are Agile And Secure Development Mutually Exclusive?
bySource Conference
 
Secure SDLC Framework
byRishi Kant
 
The What, Why, and How of DevSecOps
byCprime
 
Software Development Life Cycle – Managing Risk and Measuring Security
byThomas Malmberg
 
Security Development Lifecycle Tools
byn|u - The Open Security Community
 
Security Culture from Concept to Maintenance: Secure Software Development Lif...
byDilum Bandara
 
Applicaiton Security - Building The Audit Program
byMichael Davis
 
Security Services and Approach by Nazar Tymoshyk
bySoftServe
 
Sumeet Mandloi: Robust Security Testing Framework
byAnna Royzman
 
Devops security-An Insight into Secure-SDLC
bySuman Sourav
 
5 Important Secure Coding Practices
byThomas Kurian Ambattu,CRISC,ISLA-2011 (ISC)²
 
ОЛЬГА АКСЬОНЕНКО «Безпечна розробка програмного забезпечення в Agile проектах...
byQADay
 
Crafting Super-Powered Risk Assessments by Digital Defense Inc & Veracode
byDigital Defense Inc
 
Application Security Risk Assessment
byThomas Kurian Ambattu,CRISC,ISLA-2011 (ISC)²
 
A Successful SAST Tool Implementation
byCheckmarx
 

Similar to What’s making way for secure sdlc

PPT
Lecture Course Outline and Secure SDLC.ppt
byDrBasemMohamedElomda
 
PPT
4_25655_SE731_2020_1__2_1_Lecture 1 - Course Outline and Secure SDLC.ppt
bygealehegn
 
PDF
Secure in Software Development Life Cycle
byjosheph max
 
PPTX
Nandan T M SDLC Phases and roles pptNaan
byNandan Gowda
 
PDF
S sdlc datasheet q1-2015 v fnl
bySally Chan
 
PDF
ACS-security-2821-001 Lecture Note 13.pdf
byMostafa Taghizade
 
PDF
Secure Software Design and Secure Programming
byMustafaAlshekly1
 
PDF
Comparitive Analysis of Secure SDLC Models
byIRJET Journal
 
PDF
Starting Involving Security In SDLC Process
bySandi Ardyansyah
 
PDF
Secure Agile SDLC BSides 14 - 2017 - Raphael Denipotti
byRaphael Denipotti
 
PPTX
Application Security and Secure Software Development Lifecycle
byDrKavithaP1
 
PPTX
Introduction of Secure Software Development Lifecycle
byRishi Kant
 
PPTX
Security for developers
byAbdelrhman Shawky
 
PDF
SECURING SOFTWARE DEVELOPMENT STAGES USING ASPECT-ORIENTATION CONCEPTS
byijseajournal
 
PPTX
SDLC
byTayabaZahid
 
PDF
7.1. SDLC try me to implenment
bydefconmoscow
 
PPTX
Secure Software Development Lifecycle.pptx
byLeonHamilton4
 
PPTX
Security lifecycle_information security.pptx
bymcbenildasmit
 
PPTX
The-Software-Development-Life-Cycle-SDLC-From-Idea-to-Impact.pptx
byszaib2
 
PPTX
Software Development Life Cycle (SDLC)
byAl-Mamun Sarkar
 
Lecture Course Outline and Secure SDLC.ppt
byDrBasemMohamedElomda
 
4_25655_SE731_2020_1__2_1_Lecture 1 - Course Outline and Secure SDLC.ppt
bygealehegn
 
Secure in Software Development Life Cycle
byjosheph max
 
Nandan T M SDLC Phases and roles pptNaan
byNandan Gowda
 
S sdlc datasheet q1-2015 v fnl
bySally Chan
 
ACS-security-2821-001 Lecture Note 13.pdf
byMostafa Taghizade
 
Secure Software Design and Secure Programming
byMustafaAlshekly1
 
Comparitive Analysis of Secure SDLC Models
byIRJET Journal
 
Starting Involving Security In SDLC Process
bySandi Ardyansyah
 
Secure Agile SDLC BSides 14 - 2017 - Raphael Denipotti
byRaphael Denipotti
 
Application Security and Secure Software Development Lifecycle
byDrKavithaP1
 
Introduction of Secure Software Development Lifecycle
byRishi Kant
 
Security for developers
byAbdelrhman Shawky
 
SECURING SOFTWARE DEVELOPMENT STAGES USING ASPECT-ORIENTATION CONCEPTS
byijseajournal
 
SDLC
byTayabaZahid
 
7.1. SDLC try me to implenment
bydefconmoscow
 
Secure Software Development Lifecycle.pptx
byLeonHamilton4
 
Security lifecycle_information security.pptx
bymcbenildasmit
 
The-Software-Development-Life-Cycle-SDLC-From-Idea-to-Impact.pptx
byszaib2
 
Software Development Life Cycle (SDLC)
byAl-Mamun Sarkar
 

Recently uploaded

PDF
AI and Computer Architecture: 200 Years Together
byDmitry Zinoviev
 
PDF
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 
PDF
DIGITAL FORENSICS - Notes for Everything.pdf
bypankajkumavatbeit
 
DOCX
Cloud Security, Serverless Security. Cybersecurity
byEdcelPacayraDuena
 
PDF
Generative AI in 2026: Hype, Bubble, Winter or The Real Deal?
byDr. Tathagat Varma
 
PDF
Vibe Coding vs. Spec-Driven Development [Free Meetup]
byHaim Michael
 
PDF
Eredità digitale sugli smartphone: cosa resta di noi nei dispositivi mobili
bySpeck&Tech
 
PPTX
The Landscape of Computer Software Development Companies
byYash Singh
 
PDF
Digit Expo 2025 - EICC Edinburgh 27th November
byRay Bugg
 
PPTX
Ethics in AI - Artificial Intelligence Fundamentals.pptx
byemenyiblessing
 
PDF
API206-S: Transforming Supply Chains with Amazon Bedrock AgentCore - AWS re:I...
byChris Bingham
 
PDF
Usage Control for Process Discovery through a Trusted Execution Environment
byValerioGoretti
 
PDF
MuleSoft Vibes is an AI-powered assistant
byVikalp Bhalia
 
PDF
How Mobile Apps Are Shaping the Future of Digital Innovation
byWilliam Taylor
 
PDF
Generative AI in UiPath: Mastering the Generative Extractor for Intelligent D...
byDianaGray10
 
PDF
Empowering Productivity with Clever Prompts and Intelligent Agents
byUni Systems S.M.S.A.
 
PPTX
The Future of IT Service Management AI Automation & Beyond.pptx
byChetu
 
PDF
ElyriaSoftware — Powering the Future with Blockchain Innovation
byElyria Software
 
DOCX
Introduction to the World of Computers (Hardware & Software)
byALIABBAS ABASOV
 
PDF
Security Technologys: Access Control, Firewall, VPN
byShielaLasala
 
AI and Computer Architecture: 200 Years Together
byDmitry Zinoviev
 
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 
DIGITAL FORENSICS - Notes for Everything.pdf
bypankajkumavatbeit
 
Cloud Security, Serverless Security. Cybersecurity
byEdcelPacayraDuena
 
Generative AI in 2026: Hype, Bubble, Winter or The Real Deal?
byDr. Tathagat Varma
 
Vibe Coding vs. Spec-Driven Development [Free Meetup]
byHaim Michael
 
Eredità digitale sugli smartphone: cosa resta di noi nei dispositivi mobili
bySpeck&Tech
 
The Landscape of Computer Software Development Companies
byYash Singh
 
Digit Expo 2025 - EICC Edinburgh 27th November
byRay Bugg
 
Ethics in AI - Artificial Intelligence Fundamentals.pptx
byemenyiblessing
 
API206-S: Transforming Supply Chains with Amazon Bedrock AgentCore - AWS re:I...
byChris Bingham
 
Usage Control for Process Discovery through a Trusted Execution Environment
byValerioGoretti
 
MuleSoft Vibes is an AI-powered assistant
byVikalp Bhalia
 
How Mobile Apps Are Shaping the Future of Digital Innovation
byWilliam Taylor
 
Generative AI in UiPath: Mastering the Generative Extractor for Intelligent D...
byDianaGray10
 
Empowering Productivity with Clever Prompts and Intelligent Agents
byUni Systems S.M.S.A.
 
The Future of IT Service Management AI Automation & Beyond.pptx
byChetu
 
ElyriaSoftware — Powering the Future with Blockchain Innovation
byElyria Software
 
Introduction to the World of Computers (Hardware & Software)
byALIABBAS ABASOV
 
Security Technologys: Access Control, Firewall, VPN
byShielaLasala
 

What’s making way for secure sdlc

  • 1.
    What’s making wayfor Secure SDLC?
  • 2.
    Introduction Organizations are increasinglyincorporating changes in the Software Development Life Cycle (SDLC) in order to improve security posture and create a robust IT System. These changes are aimed to bring security at software development stage itself, rather than incurring expensive fixes for IT vulnerabilities post-implementation of the software. Traditionally, SDLC was focused towards fulfilling specific business requirements, functions and features in a step-down manner.
  • 3.
    stages • Inception stage. •Elaboration stage. • Construction stage. • Production stage.
  • 4.
    Inception stage • BusinessRequirement Document is prepared keeping security aspects in consideration and foresee security concerns from a third-party aspect.
  • 5.
    Elaboration stage • Basedon Technical Requirement Document received from inception teams, analysis and design ensures that the security parameters are defined and considered.
  • 6.
    Construction stage • Achievegreater security controls by building tools in line with functional and security vulnerabilities against industry’s security standards, such as OWASP.
  • 7.
    Production stage • Runninga penetration testing on scheduled basis for the system for any security threats and cyber vulnerabilities.
  • 8.
    Use of SDLC •SDLC provides a proper flow to entire process of software development. • Bring security in SDLC process because a stitch in time saves nine. • Layer of vulnerability that emanates from open source library. • Disruption in information systems may need greater controls and checks.
  • 9.
    Conclusion • As SDLCincorporates all the necessary steps required for the development of a software or application, organizations that include the extra step of security in the SDLC, gain in the longer run. Deploying Secure SDLC ensures that the problems emanating in system development and security are addressed, discouraging incurring costly solutions at the post-production stages or worse paying huge settlement amounts due to data thefts and privacy breaches.