This post was originally published here by (ISC)² Management.
(ISC)² regularly conducts Job Task Analysis (JTA) studies to review and update the content outline (or exam blueprint) of its credentialing examinations. A JTA is the methodical process used to determine tasks that are performed by credential holders and knowledge and skills required to perform those tasks successfully. Results of the JTA study link a candidate’s examination score directly to the domain knowledge being tested.
A JTA Study Workshop for CSSLP has tentatively been scheduled toward the end of January 2019. In preparation for the upcoming study, we would like to hear from our CSSLP members. Please comment on the new and emerging secure software lifecycle issues that you feel should be addressed in the CSSLP exam. This is your opportunity to shape the content of the CSSLP exam. Thank you in advance for taking the time to share your feedback and experiences – it will help us ensure the CSSLP continues to meet the needs of an ever-evolving industry.
You can find a copy of the existing CSSLP Exam Outline on our website. (ISC)² would appreciate you reviewing this Outline and answering the following questions:
- Do you believe that CSSLP exam covers all the appropriate domains of the secure software lifecycle? Are there any domains missing or better covered elsewhere?
- If not, what sort of topics and domains must be added to the exam content outline so that the Outline reflects the changing face of software security?
Also, please let us know if any important content (tasks, knowledge, and skills) are not covered by the current CSSLP Outline.
Send your comments to us at 2019CSSLPJTA@isc2.org. Your comments will be compiled and presented to the JTA Committee for further review. Thank you for your invaluable insights and help!