CISSP Question #770: Real Exam Question with Answer & Explanation

The correct answer is C: Requirements definition phase. The most beneficial phase for security personnel involvement in the Systems Development Life Cycle (SDLC) process is the requirements definition phase. This is the phase where the security personnel can identify and analyze the security needs, objectives, and constraints of the s

Submitted by kwame.gh· Mar 5, 2026Software Development Security

Question

When is security personnel involvement in the Systems Development Life Cycle (SDLC) process MOST beneficial?

Options

ATesting phase
BDevelopment phase
CRequirements definition phase
DOperations and maintenance phase

Explanation

The most beneficial phase for security personnel involvement in the Systems Development Life Cycle (SDLC) process is the requirements definition phase. This is the phase where the security personnel can identify and analyze the security needs, objectives, and constraints of the system, and define the security requirements and specifications that the system must meet. By involving security personnel in this phase, the organization can ensure that security is integrated into the system design from the beginning, and avoid costly or complex changes or fixes later in the

Topics

#SDLC security#security by design#requirements analysis#shift left security

Community Discussion

No community discussion yet for this question.

Full CISSP Practice Browse All CISSP Questions