Which of the following is the BEST control to help ensure that security requirements are considered throughout the life cycle of an agile software development project?
A.
Including project team members who can provide security expertise
B.
Reverting to traditional waterfall software development life cycle (SDLC) techniques
C.
Documenting security control requirements and obtaining internal audit sign off
D.
Requiring the project to go through accreditation before release into production
A. Including project team members who can provide security expertise
Including project team members with security expertise is the best control to ensure that security requirements are considered throughout the life cycle of an agile software development project. This approach integrates security considerations directly into the development process, allowing for timely identification and mitigation of security risks. Options B, C, and D do not align with agile principles and may hinder the flexibility and efficiency of the agile development process.
This section is not available anymore. Please use the main Exam Page.CISA Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
SuperMax
9 months, 3 weeks agoPakawat
1 year, 1 month ago