To address security concerns, you align the software development life cycle to ISO 15288, which consists of four families or groups of system life cycle processes: agreement, organizational project-enabling, technical management, and technical processes. Which of the following belongs to the process family, Technical Processes?
A. Configuration Management
B. Life Cycle Model Management
C. Quality Assurance
D. Business or Mission Analysis
Kindly be reminded that the suggested answer is for your reference only. It doesn’t matter whether you have the right or wrong answer. What really matters is your reasoning process and justifications.
My suggested answer is D. Business or Mission Analysis.
NIST has aligned system security engineering (NIST SP 800-160 v1) and Risk Management Framework (NIST SP 800-37 R2) with ISO 15288 and obsoleted the legacy System Development Life Cycle (NIST SP 800-64).