The world's largest information security professional body ISO2(pronounced "ISC-squared") has announced the expansion of its online self-assessment tool known as studISCope (pronounced "study scope") to include the Certified Secure Software Lifecycle Professional CISSP accreditation.
The studISCope tool provides a simulation of the (ISC)2 CSSLP certification exams and also serves as a mechanism for security-focused software developers to pursue continuous self-development, regardless of whether they acquire the CSSLP certification. Questions are developed using the same psychometric evaluation processes as the actual certification exam by (ISC)2-certified subject matter experts. At the conclusion of the simulation, the test taker receives his or her score, providing them with a readiness assessment and focused study plan.
Code-language neutral, the CSSLP aims to stem the proliferation of software vulnerabilities by establishing best practices and validating an individual's competency in addressing security issues throughout the software development lifecycle. The certification is said to cater to a wide range of stakeholders who are involved in the software development process, including not only developers but also business and technical analysts, other software engineers, software designers and architects, project managers, software quality assurance testers, and others involved in the software development lifecycle.
"Talk about security is everywhere right now within the software development world -- and there is a recognition of the need to improve our capabilities, but there is still a lot to accomplish. Moving forward begins with assessment. studISCope should prove valuable to anyone looking to develop some new, very marketable skills in this sector," says Bola Rotibi, an analyst specializing in the software sector as research director with Creative Insight Consulting.