Crucial Exams

ISC2 Certified Secure Software Lifecycle Professional (CSSLP) Practice Question

During an Agile project retrospective, the secure software lead is asked to redesign the organization's security-awareness program so that it meets role-based training expectations. Which approach most effectively fulfills the requirement to provide role-appropriate security training for developers, testers, and project managers?

  • Require every team member to earn the same external penetration-testing certification regardless of their job function.

  • Create separate curricula that link security learning objectives to each role's tasks-for example, secure coding labs for developers, vulnerability test-case workshops for testers, and risk-based planning sessions for project managers.

  • Email the organization's secure coding standard to all staff and ask them to acknowledge that they have read it.

  • Hold one annual, company-wide presentation on general security topics such as password hygiene and phishing, with no differentiation among roles.

ISC2 Certified Secure Software Lifecycle Professional (CSSLP)
Secure Software Lifecycle Management
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot