Crucial Exams

ISC2 Certified Secure Software Lifecycle Professional (CSSLP) Practice Question

During an operational risk assessment you learn that developers clone production database snapshots into the shared Quality Assurance (QA) environment so testers have realistic data for functional testing. The QA network is less restricted, contractors have access, and detailed auditing is not enabled. Which risk requires the highest priority mitigation before the next release?

  • Developers accidentally committing experimental code to the main production branch due to shared credentials.

  • Violation of third-party software licenses when libraries are executed outside the production environment.

  • Unauthorized disclosure of sensitive production data because it is stored unmasked in a lower-trust environment.

  • Performance degradation of test systems leading to delayed release schedules.

ISC2 Certified Secure Software Lifecycle Professional (CSSLP)
Secure Software Deployment, Operations, Maintenance
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot