CAS-003 · Question #314
CAS-003 Question #314: Real Exam Question with Answer & Explanation
The correct answer is C: Enforce code quality and reuse standards into the requirements definition phase of the waterfall. The security engineer's goal is to prevent developers from being blocked by security requirements appearing as large batches at specific schedule-point gates during development. By enforcing security, code quality, and reuse standards during the requirements definition phase-the
Question
Options
- ASchedule weekly reviews of al unit test results with the entire development team and follow up
- BDevelop and implement a set of automated security tests to be installed on each development
- CEnforce code quality and reuse standards into the requirements definition phase of the waterfall
- DDeploy an integrated software tool that builds and tests each portion of code committed by
Explanation
The security engineer's goal is to prevent developers from being blocked by security requirements appearing as large batches at specific schedule-point gates during development. By enforcing security, code quality, and reuse standards during the requirements definition phase-the earliest phase of the waterfall-security becomes an integral part of what developers are building from day one. Developers have clear, pre-defined security requirements throughout the project rather than encountering them as late-stage blockers during integration or testing phases. Option A (weekly reviews) creates recurring scheduled checkpoints. Option B (automated tests per workstation) is useful but focuses on testing, not requirements integration. Option D (CI/CD-style commit testing) is a strong DevSecOps approach but represents continuous gating, not upfront integration of requirements.
Community Discussion
No community discussion yet for this question.