(ISC)2 Secure Software Development Credential
Palm Harbor, Fla. — Dec. 4
(ISC)2 (“ISC-squared”), a not-for-profit educating and certifying information security professionals throughout their careers, announced it has received applications from 100 experts representing 15 countries to receive the Certified Secure Software Lifecycle Professional (CSSLP) and assist in the development of the certification exam and education program.
The CSSLP aims to validate secure software development practices and expertise to address the increasing number of application vulnerabilities. Launched on Sept. 25, 2008, the experience assessment phase is available to those who have four years of professional experience in the software development lifecycle (SDLC) and can demonstrate and document their expertise in at least four of the seven CSSLP domains. The first CSSLP exam is scheduled for the end of June in 2009.
“We are very pleased by the reaction we have received thus far from veteran software development professionals who are providing their expertise in the development of the CSSLP,” said W. Hord Tipton, executive director for (ISC)2. “The fact that we have received responses from so many countries around the world underscores the notion that the problem of secure software is truly a global issue.”
Applications for the CSSLP were received from Austria, Canada, China, France, Hong Kong, India, Ireland, Italy, Japan, Luxembourg, Puerto Rico, South Africa, South Korea, Sweden, Switzerland, the United Kingdom and the United States.
The first three individuals to attain the CSSLP certification for their early contributions are:
- Jim Molini, senior program manager in the identity and security division of Microsoft.
- Mano Paul, founder of Express Certifications and former senior global security program manager with Dell.
- Cassio Goldschmidt, senior manager of product security with Symantec.
“These three individuals have been instrumental in forming this critical new credential and represent the type of accomplished individuals in the software community who are expressing such strong interest in the CSSLP,” Tipton said.
Designed to stem the proliferation of security vulnerabilities resulting from inadequate development processes, the CSSLP aims to establish best practices and validate an individual’s competency in addressing security issues throughout the SDLC.