How does CA/Broadcom build and ensure secure software?
What DAST, SAST processes are used?
The CA Secure Software Development Lifecycle (CA SSDLC) and security-related best practices described in the documents below are implemented to build more secure software and address security requirements throughout the product development cycle. Key aspects described below include education, architectural risk assessment, code analysis, penetration testing, and continuous tracking of known vulnerabilities and attack vectors.
Please see:
Frequently Asked Questions and guidance for the secure development processes of the Agile Operations Division