Assume that you are working for a software development company that creates an application used by air traffic controllers.
Develop criteria that could be used to assess which level the company has achieved for the System Security Engineering Capability Maturity Model (SSE-CMM) Process Area “Building Assurance Argument.” The goal of this process area is to provide evidence that the security needs of the organization have been met. Suggest 2-3 reasons as to why your measures should be adopted. Why did you choose the measures you did to assess the level of maturity for each SSE-CMM level?
Your report should follow APA style.
Reference Dhillon, G. S. (2018). Information Security: Text and cases (Edition 2.0). Burlington, VT: Prospect Press. Chapter 7, -Information Systems Security Standards and Guidelines”
PCI Security Standards Council. (2018, May). Payment Card Industry (PCI) Data Security Standard: Requirements and security assessment procedures (Version 3.2.1). Retrieved from https://www.pcisecuritystandards.org/document_library Web Resource Systems Security Engineering Capability Maturity Model (SSE-CMM) Network Policy development Cisco Network Policy enforcement