Effective CISSP Questions

You are researching, implementing, and managing software engineering processes using secure design principles. Which of the following best aligns with the manifesto for Agile software development? (Wentz QOTD)
A. Zero trust
B. Lest privilege
C. Keep it simple
D. Separation of duties

Kindly be reminded that the suggested answer is for your reference only. It doesn’t matter whether you have the right or wrong answer. What really matters is your reasoning process and justifications.

My suggested answer is C. Keep it simple.

Agile Mindset (PMI ACP)
Agile Mindset (PMI ACP)

The manifesto for agile software development comprises four values and twelve principles but doesn’t prescribe any implementation details. “Simplicity–the art of maximizing the amount of work not done–is essential.” is one of the principles.

Agile Values

We are uncovering better ways of developing software by doing it and helping others do it.
Through this work we have come to value:

  • Individuals and interactions over processes and tools
  • Working software over comprehensive documentation
  • Customer collaboration over contract negotiation
  • Responding to change over following a plan

That is, while there is value in the items on the right, we value the items on the left more.

Agile Principles

  1. Our highest priority is to satisfy the customer through early and continuous delivery of valuable software.
  2. Welcome changing requirements, even late in development. Agile processes harness change for the customer’s competitive advantage.
  3. Deliver working software frequently, from a couple of weeks to a couple of months, with a
    preference to the shorter timescale.
  4. Business people and developers must work together daily throughout the project.
  5. Build projects around motivated individuals. Give them the environment and support they need, and trust them to get the job done.
  6. The most efficient and effective method of conveying information to and within a development team is face-to-face conversation.
  7. Working software is the primary measure of progress.
  8. Agile processes promote sustainable development. The sponsors, developers, and users should be able to maintain a constant pace indefinitely.
  9. Continuous attention to technical excellence and good design enhances agility.
  10. Simplicity–the art of maximizing the amount of work not done–is essential.
  11. The best architectures, requirements, and designs emerge from self-organizing teams.
  12. At regular intervals, the team reflects on how to become more effective, then tunes and adjusts its behavior accordingly.



My new book, The Effective CISSP: Security and Risk Management, helps CISSP aspirants build a solid conceptual security model. It is not only a tutorial for information security but also a study guide for the CISSP exam and an informative reference for security professionals.

您正在使用安全設計原則研究、實施和管理軟件工程過程。以下哪項與敏捷軟件開發宣言最相符?(Wentz QOTD)
A. Zero trust
B. Lest privilege
C. Keep it simple
D. Separation of duties

Leave a Reply