More than100 IT professionals from 15 countries have applied to
take part in the final development phase of
(ISC)2's secure software education programme.
WHord Tipton, executive director for (ISC)2 said, "The fact that
we have received responses from somany countries underscores the
notion that the problem of secure software is a truly global
issue."
The Certified Secure Software Lifecycle Professional (CSSLP)
education programme is aimed is at reducing the risk of
security vulnerabilities in software applications.
The CSSLP also establishes best practices and validates an IT
professional's competency in dealing with security issues in
software development.
Subject areas include the software lifecycle, vulnerabilties,
risk, information security fundamentals and compliance.
When the certification was announced in September, IT
professionals who met certain qualification experience requirements
were invited to apply for the first CSSLP programme and contribute
to its final development.
Howard Schmidt, president of the
Information Security Forum (ISF), said an initiative aimed at
reducing security weaknesses in software is overdue.
"The time to act is now because
new applications that lack basic security controls are being
developed every day," he said.
The first CSSLP exam is scheduled for the end of June 2009.