The CERT® Guide to Insider Threats: How to Prevent, Detect, and Respond to Information Technology Crimes (Theft, Sabotage, Fraud)

Chapter 5. Insider Threat Issues in the Software Development Life Cycle

Software Development Life Cycle (SDLC): Synonymous with “software process” as well as “software engineering,” it is a structured methodology used in the development of software products and packages. This methodology is used from the conception phase through to the delivery and end of life of a final software product.¹

1. Webopedia.

Insider threat issues in the Software Development Life Cycle: those aspects of an organization’s software development or maintenance policies and processes that insiders exploited to carry out their attack.

You might think that this chapter is going to address software engineers who inject malicious code into the source code as they develop a ...

Get The CERT® Guide to Insider Threats: How to Prevent, Detect, and Respond to Information Technology Crimes (Theft, Sabotage, Fraud) now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

The CERT® Guide to Insider Threats: How to Prevent, Detect, and Respond to Information Technology Crimes (Theft, Sabotage, Fraud) by Dawn M. Cappelli, Andrew P. Moore, Randall F. Trzeciak

Chapter 5. Insider Threat Issues in the Software Development Life Cycle

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly