Author: Vincent Lin, Director of Software Engineering at OPSWAT This document describes the application security program used at OPSWAT and covers the following topics: What is Secure Software Development Life Cycle (SDLC) and why we use it Security frameworks we follow Comprehensive Application Security Program that covers strategy and governance, requirements, and design to implementation and operation. What is Secure SDLC? Software Development Life Cycle (SDLC) is a process consisting of a series of planned activities to develop software products. The Secure Software Development Life Cycle (S-SDLC) incorporates security into every phase of the Software Development Life Cycle – including requirement gathering, design, development, testing, and operation/maintenance. Why Secure SDLC? The threat landscape has changed drastically in recent years. There are actors out there whose only intention is to break into computer systems and networks to damage them, whether it is for fun or profit. There are many consequences, but

Scroll to Top