offered by
Enterprise Security Office
Advisory

Secure System and Software Lifecycle Management Standard

Date: 10/05/2018
Organization: Enterprise Security Office
Referenced Sources: MGL Chapter 7D, Section 2

The Secure System and Software Lifecycle Management Standard establishes requirements for identifying controls to be incorporated in system and software planning, design, building, testing and implementation.

Contact

Enterprise Security Office

Phone

(617) 626-4400
Skip table of contents

Table of Contents

Purpose

The Secure System and Software Lifecycle Management Standard establishes requirements for controls that shall be incorporated in system and software planning, design, building, testing, and implementation, including:

  • Information security activities that shall occur during the system and software development life cycle.
  • Required controls for supporting system or software development processes such as segregation of environments, prevention and/or protection of confidential production data in test environments.
  • The use of version control for software development.
  • Requirements for security hardening when building and configuring systems and applications.

Downloads

IS.O14 Secure System and Software Lifecycle Management Standard (PDF 291.26 KB)

Contact

Phone

(617) 626-4400
Referenced Sources:
MGL Chapter 7D, Section 2
This is part of: Enterprise Information Security Policies and Standards 

IS.013 Physical and Environmental Security Standard

IS.015 Third Party Information Security Standard
Feedback