New Training: Summarize App Development, Deployment, and Automation
In this 8-video skill, CBT Nuggets trainer Keith Barker describes and summarizes application development, deployment, and automation. Watch this new Cyber Security training.
Learn Cyber Security with one of these courses:
- Secure Design and Architecture Fundamentals for Enterprise Environments Training
- CompTIA Security+ (SY0-601)
This training includes:
- 8 videos
- 46 minutes of training
You’ll learn these topics in this skill:
- Intro to App Development, Deployment, and Automation
- Development Environments
- Separation of Duties
- Secure Coding Techniques
- OWASP BWA
- Automation and Scripting
- Improving Integrity
- Review Quiz
How Separation of Duties Strategy Minimizes Error in the Development Process
Separation of duties (also known as SoD or segmentation of duties) is a design control process used by organizations to minimize the risk of conflicts of interest, data breaches, design errors, fraud, and other risks exposed in the development and review process. The objective behind the separation of duties is built on a shared responsibility model where two or more employees share the responsibility for a given project to minimize the risk of a single employee acting as a single point of failure.
Without the use of the separation of duties strategy, a single employee may be responsible for a critical stage of the design, implementation, or review process. By entrusting a single employee with this responsibility, an organization takes on risk by removing the checks and balances quality that is inherent in the separation of duties strategies.
Organizations can perform a simple separation of duties assessment by inquiring if any single employee can breach sensitive data, steal financial information, or implement a major design without a second employee's oversight. If this is so, it may be time to reevaluate internal design processes and assess the current policies' risk.