CompTIA CySA+ (CS0-003) — Question 326

Which of the following best explains the importance of the implementation of a secure software development life cycle in a company with an internal development team?

Answer options

• A. Increases the product price by using the implementation as a piece of marketing
• B. Decreases the risks of the software usage and complies with regulatory requirements
• C. Improves the agile process and decreases the amount of tests before the final deployment
• D. Transfers the responsibility for security flaws to the vulnerability management team

Correct answer: B

Explanation

The correct answer is B, as implementing a secure software development life cycle significantly reduces the risks involved in software use and ensures compliance with necessary regulations. Options A and C misrepresent the purpose of such implementations, focusing instead on marketing and process efficiency without addressing security. Option D incorrectly suggests that responsibility for security is transferred, rather than integrated into the development process.