Security Development Lifecycle

Open Security Development Lifecycle

Begin Here

  • Assign a Security Owner for the project
  • Look at the Overview
  • Read through the phases and the types of activities in each phase
  • Produce a Checklist of activities for your project knowing that some activities may occur more than once or when necessary
  • The Security Owner is also accountable for the storage and maintenance of any artifacts
    • There should be a minimal set of artifacts since the goal is not to document but to raise security assurance
  • Remember that a Security Owner is accountable for activities but may not be responsible for completing them