9d • 🙋♂️ CISSP
CISSP Practice Question – Software Development Security
A development team is adopting a secure software development lifecycle (SDLC). The security manager wants to ensure that vulnerabilities are identified before code is executed, but also wants to minimize cost and disruption to developers.
Which of the following activities BEST meets this requirement?
A. Static application security testing (SAST)
B. Dynamic application security testing (DAST)
C. Fuzz testing
D. Penetration testing
3
17 comments
CISSP Practice Question – Software Development Security
skool.com/cybersecurity-study-group
Share resources, get advice, and connect with peers studying cybersecurity. Join our CISSP study group and connect with fellow professionals today!
Leaderboard (30-day)
1
+45
2
+17
3
+14
4
+12
5
+11
Powered by