Sdlc — CISSP Practice Questions
The Software Development Life Cycle (SDLC) is a structured framework that guides how software is planned, designed, built, tested, deployed, and maintained. For the CISSP exam, Domain 8 requires candidates to understand how security considerations must be woven into every SDLC phase rather than added after development is complete. Common SDLC models tested include Waterfall, Agile, Spiral, and the Rational Unified Process, each with distinct security implications. Exam questions often focus on where security reviews, threat modeling, and acceptance testing fit within these models.
Free questions on sdlc
Which software development methodology integrates security testing throughout the development lifecycle rather than only at the end?
Free question · medium · full answer + explanation
More sdlc questions in the full bank
- Which testing method performs static analysis of source code without executing the application? Unlock answer & explanation →
- What is the purpose of secure coding standards and guidelines? Unlock answer & explanation →
- What is the purpose of security testing in the SDLC? Unlock answer & explanation →