Review of the major Secure Software Development concepts and terms, and how they interrelate, to help you review, guide your studies, and help you pass the CISSP exam. This MindMap review covers: 00:00 Intro 00:29 Overview 01:04 Bake in Security 01:26 SLC 01:47 SDLC 02:35 Development methodologies 04:10 SecDevOps 05:30 Canary deployments 07:21 Maturity models 08:18 APIs 09:01 Code obfuscation 09:52 Acquiring software 10:44 Buffer overflows Other MindMaps: Domain 1 Security & Risk Management: Domain 2 Asset Classification: Privacy: Domain 3 Models and Frameworks: Evaluation Criteria: Trusted Computing Base: Vulnerabilities in Systems: Cloud: Cryptography: Digital Certificates, Digital Signatures & PKI: Cryptanalysis: Physical Security: Domain 5 Access Control Overview: Single Sing-on & Federated Access: Domain 6 Security Assessment and Testing Overview: Vulnerability Assessment and Penetration Testing: Logging & Monitoring: Domain 7 Investigations: Incident Response: Malware: Patching & Change Management: Recovery Strategies: Business Continuity Management (BCM): Domain 8 Secure Software Development: Databases: CISSP Master Instructor, John Berti: Visuals, narration and CISSP Master Instructor, Rob Witcher: Video editing by Nick: threntinfo@