Which of the following would BEST help to ensure that potential security issues are considered by the development team as part of incremental changes to agile- developed software?
A.
Deploy changes in a controlled environment and observe for security defects.
B.
Mandate that the change analyses are documented in a standard format.
C.
Assign the security risk analysis to a specially trained member of the project management office.
D.
Include a mandatory step to analyze the security impact when making changes.
Deploying changes in a controlled environment (option A) is reactive and focuses more on identifying issues after changes have been made. On the other hand, option D focuses on preventing security issues by requiring the development team to actively analyze the security impact before implementing changes. This proactive approach aligns well with agile principles of early and continuous delivery of valuable software.
upvoted 1 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Swallows
9 months ago