Crucial Exams

ISC2 Certified Secure Software Lifecycle Professional (CSSLP) Practice Question

Your development team is designing an application that will retrieve records from a back-end database through a dedicated service account. To reduce the blast radius of a credential leak, which requirement should the security architect include in the access-provisioning document?

  • Use the identical service account and credentials in development, staging, and production for deployment consistency.

  • Configure the account password to never expire in order to prevent application downtime.

  • Restrict the account's permissions to only the specific tables and query types the application needs.

  • Add the account to the database's full administrator role so schema migrations will succeed without manual intervention.

ISC2 Certified Secure Software Lifecycle Professional (CSSLP)
Secure Software Requirements
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot