Note how various entities are currently utilizing SDLC to implement software.

Note how various entities are currently utilizing SDLC to implement software.

(2  pages) Step 3: Explore the Software Development Life Cycle (SDLC)

Now that you understand SCRM, you decide to complete a Software Development Life Cycle assessment. The Software development life cycle (SDLC) is a process used to develop, maintain, replace, and change software. The overall purpose of SDLC is to improve the quality of software through the development and implementation process. (Review Systems SoftwareApplication SoftwareSoftware Interaction and Programming if you do not already have a working understanding of these topics.)

As part of your assessment, include the following information:

You will use the information that you gather during this step to complete your SDLC assessment.

(2 pages) Step 4: Identify Key Implementation Attributes

In Step 3, you explored SDLC, the ways other organizations are implementing it, and best practices. Now you are ready to guide your own organization through the process of developing software.

You start by considering the needs of your organization. Currently, the accounting month-end closing procedures involve extracting data from the accounting database into spreadsheets, running macros within the spreadsheets, uploading new data into the accounting database, and emailing generated spreadsheet reports and word processing memos. Brenda, the Director of Accounting Systems, would like this process automated without putting financial data at risk during or after the implementation. (Review Databases for operational dataDatabase Management Systems, and How a DBMS works if you do not already have a working understanding of these topics.)

Based on this needs analysis, you decide to focus on the SDLC maintenance phase:

  • Identify the factors key to successful maintenance and the implementation of this phase.
  • Identify potential obstacles to success and ways to anticipate and mitigate them.

You will use the information that you gather during this step to complete your SDLC assessment.

(3 pages) Step 5: Examine Software Assurance

Businesses depend on the safe operations of systems. The level of confidence a business or other entity has that its software is free from vulnerabilities is referred to as Software Assurance (SwA). As the final step before your assessment, research SwA and other topics related to preventing and fixing software vulnerabilities.

In your research, make sure to complete the following:

  • Evaluate the major steps, underlying theory, and relative usefulness of software security testing, white box and black box software security testing, the Common Criteria/Common Criteria Evaluation and Validation Scheme (CCEVS), and the Common Criteria (CC) for Information Technology Security Evaluation.
  • Identify and evaluate state and federal cybersecurity policies underlying the application, scope, and selection of secure software development methodologies.
  • Determine when to perform a risk analysis.
  • Evaluate security concerns that arise during the acceptance phase of software development.
  • Describe the testing and validation process from a cybersecurity policy standpoint.
  • Identify the ways in which SwA ensures trustworthiness, predictable execution, and conformance.
  • Identify SwA best practices.
  • Identify innovations in the provision of SwA that you have found in your research.

You will use the information that you gather during this step to complete your SDLC assessment.

(5 pages) Step 6: Software Development Life Cycle Assessment

Integrating the information that you have gathered in Steps 3, 4, and 5, develop either a five-page summary assessment or a 10-minute video explanation of the software development life cycle, including your view on its importance to software security. This assessment will provide foundational support for your final recommendation.

Be sure to do the following:

  • Describe basic models and methodologies of the software development life cycle.
  • Identify a development methodology that fits your organization and explain why.
  • Describe the phases of the software life cycle.
  • List and discuss the security principles you would need to consider and explain how you would apply them throughout the software life cycle.
  • Describe the elements of a maturity model.
Uncategorized
All Rights Reserved, Essaysland.com
Disclaimer: