A security engineer is embedded with a development team to ensure security is built into products being developed. The security engineer wants to ensure developers are not blocked by a large number of security requirements applied at specific schedule points.
Which of the following solutions BEST meets the engineer's goal?

A. Schedule weekly reviews of al unit test results with the entire development team and follow up between meetings with surprise code inspections.

B. Develop and implement a set of automated security tests to be installed on each development team leader's workstation.

C. Enforce code quality and reuse standards into the requirements definition phase of the waterfall development process.

D. Deploy an integrated software tool that builds and tests each portion of code committed by developers and provides feedback.








 

Suggested Answer: C

Community Answer: D



This question is in CAS-003 CompTIA Advanced Security Practitioner (CASP+) Exam
For getting CompTIA Advanced Security Practitioner (CASP+) Certificate


Disclaimers:
The website is not related to, affiliated with, endorsed or authorized by CompTIA. 
Trademarks, certification & product names are used for reference only and belong to CompTIA.
The website does not contain actual questions and answers from CompTIA's Certification Exams.