Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Cisco Exam 300-915 Topic 14 Question 58 Discussion

Actual exam question for Cisco's 300-915 exam
Question #: 58
Topic #: 14
[All 300-915 Questions]

As part of an IoT project, an organization is developing an edge application that will run on a gateway to securely transmit sensor information it receives into an IoT cloud. Based on the Agile software development lifecycle, the development team is planning to implement a CI/CD pipeline.

Which two methods should be suggested to make the software development lifecycle more secure during the implementation and testing? (Choose two.)

Show Suggested Answer Hide Answer
Suggested Answer: D, E

Contribute your Thoughts:

Lorrine
5 months ago
I think it could be helpful, but I believe focusing on automated code reviews and team training is more critical for security.
upvoted 0 times
...
Rosendo
6 months ago
What do you think about the other options like B) Implement auto-provisioning security inspection for the code?
upvoted 0 times
...
Julieta
6 months ago
That's a good point, Lorrine. It's important to continually test the system for security weaknesses.
upvoted 0 times
...
Lorrine
6 months ago
Performing on-going penetration testing on the system could also help in identifying and fixing security vulnerabilities.
upvoted 0 times
...
Rosendo
6 months ago
I agree with Julieta, but I also think E) Train members of the team in a secure software development lifecycle methodology such as OWASP is crucial.
upvoted 0 times
...
Julieta
6 months ago
I think A) Perform automated code reviews prior to deployment is really important for security.
upvoted 0 times
...
Carylon
6 months ago
That's a good point, Destiny. It's always good to have multiple security measures in place.
upvoted 0 times
...
Destiny
7 months ago
I believe option B should also be considered. Implementing auto-provisioning security inspection can add an extra layer of security.
upvoted 0 times
...
Susy
7 months ago
I agree with you, Carylon. Automated code reviews and training in secure development are crucial.
upvoted 0 times
...
Carylon
7 months ago
I think option A and E are important for making the software development lifecycle more secure.
upvoted 0 times
...
Laurel
8 months ago
Haha, Lai makes a good point. 'Auto-provisioning security inspection' does sound like some buzzword-compliant nonsense. But hey, maybe the exam writers are trying to trip us up with that one. I'd stick with the tried-and-true methods - code reviews and OWASP training. Can't go wrong there.
upvoted 0 times
Weldon
8 months ago
E) Train members of the team in a secure software development lifecycle methodology such as OWASP.
upvoted 0 times
...
Evette
8 months ago
A) Perform automated code reviews prior to deployment.
upvoted 0 times
...
Lakeesha
8 months ago
C) Perform on-going penetration testing on the system.
upvoted 0 times
...
Selma
8 months ago
E) Train members of the team in a secure software development lifecycle methodology such as OWASP.
upvoted 0 times
...
Brandee
8 months ago
A) Perform automated code reviews prior to deployment.
upvoted 0 times
...
...
Lai
8 months ago
Hmm, I'm not so sure about option B. 'Auto-provisioning security inspection' - what does that even mean? Sounds like some made-up consultant jargon to me. I'd much rather see a good old-fashioned code review, and make sure the team is trained on OWASP principles. Keep it simple, you know?
upvoted 0 times
...
Leonora
8 months ago
I agree with Gayla. Automated code reviews and training the team on secure software development are so important. You can't just rely on penetration testing at the end - you need to build security in from the start. I also think option B, 'Implement auto-provisioning security inspection for the code,' is a good one. Catching security issues early in the pipeline is key.
upvoted 0 times
...
Gayla
8 months ago
This is a great question that really gets at the heart of securing the software development lifecycle, especially for an IoT project where security is critical. I think the two best options here are A) Perform automated code reviews prior to deployment and E) Train members of the team in a secure software development lifecycle methodology such as OWASP.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77