Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Isaca Exam CDPSE Topic 3 Question 58 Discussion

Actual exam question for Isaca's CDPSE exam
Question #: 58
Topic #: 3
[All CDPSE Questions]

Which of the following is the BEST way to ensure that application hardening is included throughout the software development life cycle (SDLC)?

Show Suggested Answer Hide Answer
Suggested Answer: B

The best way to ensure that application hardening is included throughout the software development life cycle (SDLC) is to include qualified application security personnel as part of the process. Application hardening is the process of applying security measures and techniques to an application to reduce its attack surface, vulnerabilities, and risks. Application hardening should be integrated into every stage of the SDLC, from planning and design to development and testing to deployment and maintenance. Including qualified application security personnel as part of the process helps to ensure that application hardening is performed effectively and consistently, as well as to provide guidance, feedback, and support to the developers, testers, and project managers. The other options are not as effective or sufficient as including qualified application security personnel as part of the process, as they do not address the root cause of the lack of application hardening, which is the gap in skills and knowledge among the SDLC participants.


by Rosio at Dec 10, 2024, 07:22 PM

Limited Time Offer

25%

Off

Get Premium CDPSE Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Elfriede
3 months ago
I'd have to go with B. Bringing in the security team as an integral part of the process is key.
upvoted 0 times
...
Stephanie
3 months ago
Wow, this question is really making me hungry. Maybe we should test the app by seeing if it can order a pizza securely?
upvoted 0 times
...
Lilli
4 months ago
Option B is the way to go. You can't have a secure application without security experts involved from the start.
upvoted 0 times
Paulina
2 months ago
It's important to prioritize security throughout the entire development process.
upvoted 0 times
...
Callie
2 months ago
Including them in the process can help prevent security issues down the line.
upvoted 0 times
...
Cristina
2 months ago
Definitely, they can help identify potential vulnerabilities early on.
upvoted 0 times
...
German
3 months ago
I agree, having security experts involved from the beginning is crucial.
upvoted 0 times
...
...
Tonette
4 months ago
I'm not sure, but D sounds like the most thorough approach. A third-party audit would be really comprehensive.
upvoted 0 times
...
Elza
4 months ago
C seems like the way to go. Comprehensive testing right before release is the best way to catch any security issues.
upvoted 0 times
Eden
3 months ago
Annual third-party audits can provide an extra layer of security assurance.
upvoted 0 times
...
Thaddeus
3 months ago
Having qualified application security personnel involved throughout the process is also crucial.
upvoted 0 times
...
Laurene
3 months ago
I agree, C is definitely important to catch any security issues before release.
upvoted 0 times
...
...
Elenore
4 months ago
I believe ensuring comprehensive application security testing immediately prior to release is also crucial to catch any vulnerabilities before deployment.
upvoted 0 times
...
Zack
4 months ago
I think both suggestions are valid. Having security personnel involved from the start and conducting thorough testing before release can greatly enhance application hardening.
upvoted 0 times
...
Edwin
4 months ago
I agree with Sharan. Having experts involved throughout the SDLC can help identify and address security issues early on.
upvoted 0 times
...
Sharan
4 months ago
I think the best way is to include qualified application security personnel as part of the process.
upvoted 0 times
...
Hobert
5 months ago
I think the best option is B. Having qualified security personnel involved throughout the SDLC is crucial for ensuring application hardening.
upvoted 0 times
Teddy
4 months ago
I think having both internal and external audits can also help strengthen security measures.
upvoted 0 times
...
Denna
4 months ago
Yes, that's a good point. Both are important for ensuring application security.
upvoted 0 times
...
Eladia
4 months ago
But wouldn't it also be important to have comprehensive testing before release?
upvoted 0 times
...
Margart
4 months ago
I agree, having security personnel involved from the start is key.
upvoted 0 times
...
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77