Advisory Secure System and Software Lifecycle Management Standard

Date:	10/05/2018
Organization:	Cybersecurity and Enterprise Risk Management
Referenced Sources:	MGL Chapter 7D, Section 2

The Secure System and Software Lifecycle Management Standard establishes requirements for identifying controls to be incorporated in system and software planning, design, building, testing and implementation.

Cybersecurity and Enterprise Risk Management

Online

For cybersecurity or risk management questions: ERM@mass.gov

Skip table of contents

You skipped the table of contents section.

Purpose

The Secure System and Software Lifecycle Management Standard establishes requirements for controls that shall be incorporated in system and software planning, design, building, testing, and implementation, including:

Information security activities that shall occur during the system and software development life cycle.
Required controls for supporting system or software development processes such as segregation of environments, prevention and/or protection of confidential production data in test environments.
The use of version control for software development.
Requirements for security hardening when building and configuring systems and applications.

Downloads for Secure System and Software Lifecycle Management Standard

IS.014 Secure System and Software Lifecycle Management Standard (English, PDF 197.92 KB)

Contact for Secure System and Software Lifecycle Management Standard

Online

For cybersecurity or risk management questions: ERM@mass.gov

Help Us Improve Mass.gov with your feedback

Did you find what you were looking for on this webpage?

Yes

If you have any suggestions for the website, please let us know. How can we improve the page?

Please do not include personal or contact information.

The feedback will only be used for improving the website. If you need assistance, please contact the Executive Office of Technology Services and Security. Please limit your input to 500 characters.

Please remove any contact information or personal data from your feedback.

If you need assistance, please contact the Executive Office of Technology Services and Security.

Please let us know how we can improve this page.

Please remove any contact information or personal data from your feedback.

If you need assistance, please contact the Executive Office of Technology Services and Security.

Table of Contents for the handbook, Enterprise Information Security Policies and Standards

Advisory Secure System and Software Lifecycle Management Standard

Contact for Secure System and Software Lifecycle Management Standard

Cybersecurity and Enterprise Risk Management

Online

Table of Contents

Purpose

Downloads for Secure System and Software Lifecycle Management Standard

Contact for Secure System and Software Lifecycle Management Standard

Cybersecurity and Enterprise Risk Management

Online

Help Us Improve Mass.gov with your feedback