FFS
-
Even if you don't have a lot of "security" experience, I know you hit 2-4 items off the list as it is, or you would not be where you are at right now in your career. •Secure Software Concepts •Secure Software Requirements •Software Design •Secure Software Implementation/Coding •Secure Software Testing •Software Acceptance, Software Deployment •Operations, Maintenance and Disposal •Supply Chain and Software Acquisition
But I have to take the test to "prove my skills" (according to the ICS2 website). I do get a "digital badge" when I pass, so I guess, silver lining.
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
When you pry the gun from my cold dead hands, be careful - the barrel will be very hot. - JSOP, 2013 -
This is DoD wide. It doesn't matter what DoD contract I'm on.
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
When you pry the gun from my cold dead hands, be careful - the barrel will be very hot. - JSOP, 2013John Simmons / outlaw programmer wrote:
This is DoD wide. It doesn't matter what DoD contract I'm on.
Come out and play in the Private Sector with the rest of us.
Thomas Edison (altered):
"Hell, there are no [certifciations] here -- we are trying to accomplish something."*
-
New DoD requirement for software developers that MUST be fulfilled by July 2019... CSSLP (certified secure software lifecycle professional) is a certification from (ISC)2 that focuses on application security within the software development lifecycle (SDLC). Launched in 2008, the CSSLP certification is designed for programmers, project managers, IT analysts or engineers involved in the SDLC. The certification's curriculum focuses on application vulnerabilities, risk and compliance issues that arise during the application development lifecycle and is broken down into eight domains: •Secure Software Concepts •Secure Software Requirements •Software Design •Secure Software Implementation/Coding •Secure Software Testing •Software Acceptance, Software Deployment •Operations, Maintenance and Disposal •Supply Chain and Software Acquisition CSSLP is intended to help candidates validate their expertise in application security, be able to better handle application vulnerabilities and demonstrate a working knowledge of application security. In order to be considered for the CSSLP certification, candidates must have at least four years cumulative paid full-time work experience in at least one of the eight domains of the CSSLP. Alternatively, candidates can substitute a year of this work experience with a four-year college degree in a related field. The CSSLP exam takes four hours to complete and consists of 175 multiple choice questions. Candidate need to achieve a minimum of 700 out of 1000 points to pass the exam and gain the certification.
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
When you pry the gun from my cold dead hands, be careful - the barrel will be very hot. - JSOP, 2013Every time I see something like this, I thank any available deity that I got out of that mess when I did. The last time I played in that arena was at JSOC at hurlburt Field in Florida, some 10 year ago.
A human being should be able to change a diaper, plan an invasion, butcher a hog, navigate a ship, design a building, write a sonnet, balance accounts, build a wall, set a bone, comfort the dying, take orders, give orders, cooperate, act alone, solve equations, analyze a new problem, pitch manure, program a computer, cook a tasty meal, fight efficiently, die gallantly. Specialization is for insects! - Lazarus Long
-
New DoD requirement for software developers that MUST be fulfilled by July 2019... CSSLP (certified secure software lifecycle professional) is a certification from (ISC)2 that focuses on application security within the software development lifecycle (SDLC). Launched in 2008, the CSSLP certification is designed for programmers, project managers, IT analysts or engineers involved in the SDLC. The certification's curriculum focuses on application vulnerabilities, risk and compliance issues that arise during the application development lifecycle and is broken down into eight domains: •Secure Software Concepts •Secure Software Requirements •Software Design •Secure Software Implementation/Coding •Secure Software Testing •Software Acceptance, Software Deployment •Operations, Maintenance and Disposal •Supply Chain and Software Acquisition CSSLP is intended to help candidates validate their expertise in application security, be able to better handle application vulnerabilities and demonstrate a working knowledge of application security. In order to be considered for the CSSLP certification, candidates must have at least four years cumulative paid full-time work experience in at least one of the eight domains of the CSSLP. Alternatively, candidates can substitute a year of this work experience with a four-year college degree in a related field. The CSSLP exam takes four hours to complete and consists of 175 multiple choice questions. Candidate need to achieve a minimum of 700 out of 1000 points to pass the exam and gain the certification.
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
When you pry the gun from my cold dead hands, be careful - the barrel will be very hot. - JSOP, 2013But you only have to make a C on the test. Really, only a C? Makes you wonder about the necessity of this training. Conversely Really, only a C? Cool I only have to halfway pay attention in class.
-
New DoD requirement for software developers that MUST be fulfilled by July 2019... CSSLP (certified secure software lifecycle professional) is a certification from (ISC)2 that focuses on application security within the software development lifecycle (SDLC). Launched in 2008, the CSSLP certification is designed for programmers, project managers, IT analysts or engineers involved in the SDLC. The certification's curriculum focuses on application vulnerabilities, risk and compliance issues that arise during the application development lifecycle and is broken down into eight domains: •Secure Software Concepts •Secure Software Requirements •Software Design •Secure Software Implementation/Coding •Secure Software Testing •Software Acceptance, Software Deployment •Operations, Maintenance and Disposal •Supply Chain and Software Acquisition CSSLP is intended to help candidates validate their expertise in application security, be able to better handle application vulnerabilities and demonstrate a working knowledge of application security. In order to be considered for the CSSLP certification, candidates must have at least four years cumulative paid full-time work experience in at least one of the eight domains of the CSSLP. Alternatively, candidates can substitute a year of this work experience with a four-year college degree in a related field. The CSSLP exam takes four hours to complete and consists of 175 multiple choice questions. Candidate need to achieve a minimum of 700 out of 1000 points to pass the exam and gain the certification.
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
When you pry the gun from my cold dead hands, be careful - the barrel will be very hot. - JSOP, 2013Thanks for the info. It looks quite arduous, especially since you need to meet some requirements to be re-certified every 3 years. It also encompasses a lot of different areas that a person may never be involved with. I feel your pain! I may have to go down that path as well in the future. :sigh:
-
But I have to take the test to "prove my skills" (according to the ICS2 website). I do get a "digital badge" when I pass, so I guess, silver lining.
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
When you pry the gun from my cold dead hands, be careful - the barrel will be very hot. - JSOP, 2013John Simmons / outlaw programmer wrote:
digital badge
Badges? We don't need no stinking badges! What's that? Oooooh - well apparently we do need stinking badges! My bad. :-D
Socialism is the Axe Body Spray of political ideologies: It never does what it claims to do, but people too young to know better keep buying it anyway. (Glenn Reynolds)
-
New DoD requirement for software developers that MUST be fulfilled by July 2019... CSSLP (certified secure software lifecycle professional) is a certification from (ISC)2 that focuses on application security within the software development lifecycle (SDLC). Launched in 2008, the CSSLP certification is designed for programmers, project managers, IT analysts or engineers involved in the SDLC. The certification's curriculum focuses on application vulnerabilities, risk and compliance issues that arise during the application development lifecycle and is broken down into eight domains: •Secure Software Concepts •Secure Software Requirements •Software Design •Secure Software Implementation/Coding •Secure Software Testing •Software Acceptance, Software Deployment •Operations, Maintenance and Disposal •Supply Chain and Software Acquisition CSSLP is intended to help candidates validate their expertise in application security, be able to better handle application vulnerabilities and demonstrate a working knowledge of application security. In order to be considered for the CSSLP certification, candidates must have at least four years cumulative paid full-time work experience in at least one of the eight domains of the CSSLP. Alternatively, candidates can substitute a year of this work experience with a four-year college degree in a related field. The CSSLP exam takes four hours to complete and consists of 175 multiple choice questions. Candidate need to achieve a minimum of 700 out of 1000 points to pass the exam and gain the certification.
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
When you pry the gun from my cold dead hands, be careful - the barrel will be very hot. - JSOP, 2013175 question 1000 points. Doesn't divide evenly. Try to find out which questions are the more weighty ones and focus on that material.
-
New DoD requirement for software developers that MUST be fulfilled by July 2019... CSSLP (certified secure software lifecycle professional) is a certification from (ISC)2 that focuses on application security within the software development lifecycle (SDLC). Launched in 2008, the CSSLP certification is designed for programmers, project managers, IT analysts or engineers involved in the SDLC. The certification's curriculum focuses on application vulnerabilities, risk and compliance issues that arise during the application development lifecycle and is broken down into eight domains: •Secure Software Concepts •Secure Software Requirements •Software Design •Secure Software Implementation/Coding •Secure Software Testing •Software Acceptance, Software Deployment •Operations, Maintenance and Disposal •Supply Chain and Software Acquisition CSSLP is intended to help candidates validate their expertise in application security, be able to better handle application vulnerabilities and demonstrate a working knowledge of application security. In order to be considered for the CSSLP certification, candidates must have at least four years cumulative paid full-time work experience in at least one of the eight domains of the CSSLP. Alternatively, candidates can substitute a year of this work experience with a four-year college degree in a related field. The CSSLP exam takes four hours to complete and consists of 175 multiple choice questions. Candidate need to achieve a minimum of 700 out of 1000 points to pass the exam and gain the certification.
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
When you pry the gun from my cold dead hands, be careful - the barrel will be very hot. - JSOP, 2013And does all that time and effort and taxpayer cost actually improve application security????
Latest Article - A Concise Overview of Threads Learning to code with python is like learning to swim with those little arm floaties. It gives you undeserved confidence and will eventually drown you. - DangerBunny Artificial intelligence is the only remedy for natural stupidity. - CDP1802
-
New DoD requirement for software developers that MUST be fulfilled by July 2019... CSSLP (certified secure software lifecycle professional) is a certification from (ISC)2 that focuses on application security within the software development lifecycle (SDLC). Launched in 2008, the CSSLP certification is designed for programmers, project managers, IT analysts or engineers involved in the SDLC. The certification's curriculum focuses on application vulnerabilities, risk and compliance issues that arise during the application development lifecycle and is broken down into eight domains: •Secure Software Concepts •Secure Software Requirements •Software Design •Secure Software Implementation/Coding •Secure Software Testing •Software Acceptance, Software Deployment •Operations, Maintenance and Disposal •Supply Chain and Software Acquisition CSSLP is intended to help candidates validate their expertise in application security, be able to better handle application vulnerabilities and demonstrate a working knowledge of application security. In order to be considered for the CSSLP certification, candidates must have at least four years cumulative paid full-time work experience in at least one of the eight domains of the CSSLP. Alternatively, candidates can substitute a year of this work experience with a four-year college degree in a related field. The CSSLP exam takes four hours to complete and consists of 175 multiple choice questions. Candidate need to achieve a minimum of 700 out of 1000 points to pass the exam and gain the certification.
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
When you pry the gun from my cold dead hands, be careful - the barrel will be very hot. - JSOP, 2013 -
New DoD requirement for software developers that MUST be fulfilled by July 2019... CSSLP (certified secure software lifecycle professional) is a certification from (ISC)2 that focuses on application security within the software development lifecycle (SDLC). Launched in 2008, the CSSLP certification is designed for programmers, project managers, IT analysts or engineers involved in the SDLC. The certification's curriculum focuses on application vulnerabilities, risk and compliance issues that arise during the application development lifecycle and is broken down into eight domains: •Secure Software Concepts •Secure Software Requirements •Software Design •Secure Software Implementation/Coding •Secure Software Testing •Software Acceptance, Software Deployment •Operations, Maintenance and Disposal •Supply Chain and Software Acquisition CSSLP is intended to help candidates validate their expertise in application security, be able to better handle application vulnerabilities and demonstrate a working knowledge of application security. In order to be considered for the CSSLP certification, candidates must have at least four years cumulative paid full-time work experience in at least one of the eight domains of the CSSLP. Alternatively, candidates can substitute a year of this work experience with a four-year college degree in a related field. The CSSLP exam takes four hours to complete and consists of 175 multiple choice questions. Candidate need to achieve a minimum of 700 out of 1000 points to pass the exam and gain the certification.
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
When you pry the gun from my cold dead hands, be careful - the barrel will be very hot. - JSOP, 2013Here is a song to cheer you up: The Stranglers - Always The Sun - YouTube[^] :-\
-
I dislike the over-the-f*ckin-top certification requirements imposed by the DoD. I think they have some as*hole sitting in a dark room somewhere in Washington trying to dream up ways to make working as a developer for the government the most distasteful job imaginable.
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
When you pry the gun from my cold dead hands, be careful - the barrel will be very hot. - JSOP, 2013 -
New DoD requirement for software developers that MUST be fulfilled by July 2019... CSSLP (certified secure software lifecycle professional) is a certification from (ISC)2 that focuses on application security within the software development lifecycle (SDLC). Launched in 2008, the CSSLP certification is designed for programmers, project managers, IT analysts or engineers involved in the SDLC. The certification's curriculum focuses on application vulnerabilities, risk and compliance issues that arise during the application development lifecycle and is broken down into eight domains: •Secure Software Concepts •Secure Software Requirements •Software Design •Secure Software Implementation/Coding •Secure Software Testing •Software Acceptance, Software Deployment •Operations, Maintenance and Disposal •Supply Chain and Software Acquisition CSSLP is intended to help candidates validate their expertise in application security, be able to better handle application vulnerabilities and demonstrate a working knowledge of application security. In order to be considered for the CSSLP certification, candidates must have at least four years cumulative paid full-time work experience in at least one of the eight domains of the CSSLP. Alternatively, candidates can substitute a year of this work experience with a four-year college degree in a related field. The CSSLP exam takes four hours to complete and consists of 175 multiple choice questions. Candidate need to achieve a minimum of 700 out of 1000 points to pass the exam and gain the certification.
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
When you pry the gun from my cold dead hands, be careful - the barrel will be very hot. - JSOP, 2013 -
175 question 1000 points. Doesn't divide evenly. Try to find out which questions are the more weighty ones and focus on that material.
-
Does this apply to ALL software developers working on DoD contracts or just those in certain roles?
From what I was told, it's all developers.
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
When you pry the gun from my cold dead hands, be careful - the barrel will be very hot. - JSOP, 2013 -
175 question 1000 points. Doesn't divide evenly. Try to find out which questions are the more weighty ones and focus on that material.
CompTIA does this as well for their security crap...
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
When you pry the gun from my cold dead hands, be careful - the barrel will be very hot. - JSOP, 2013 -
From what I was told, it's all developers.
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
When you pry the gun from my cold dead hands, be careful - the barrel will be very hot. - JSOP, 2013Thanks. And good luck in your new job :-)
-
This is DoD wide. It doesn't matter what DoD contract I'm on.
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
When you pry the gun from my cold dead hands, be careful - the barrel will be very hot. - JSOP, 2013 -
And does all that time and effort and taxpayer cost actually improve application security????
Latest Article - A Concise Overview of Threads Learning to code with python is like learning to swim with those little arm floaties. It gives you undeserved confidence and will eventually drown you. - DangerBunny Artificial intelligence is the only remedy for natural stupidity. - CDP1802
-
From what I was told, it's all developers.
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
When you pry the gun from my cold dead hands, be careful - the barrel will be very hot. - JSOP, 2013And a corollary question: Does this apply to outside suppliers to DoD, or, just DoD employees?
-
And a corollary question: Does this apply to outside suppliers to DoD, or, just DoD employees?
DoD civilians and contractors that are developers.
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
When you pry the gun from my cold dead hands, be careful - the barrel will be very hot. - JSOP, 2013
