The Information Technology Laboratory of the National Institute of Standards and Technology (NIST) recently updated its general guide that helped organizations plan for and implement security throughout the SDLC. Radack (n.d) described the SDLC as the overall process of developing, implementing, and retiring information systems through a multistep process from initiation, analysis, design, implementation, and maintenance to disposal (p. 2). Kalaimannan and Gupta (2017) also proposed an innovative method for designing and implementing security policy and procedures. This method is based on the Systems Development Life Cycle (SDLC).

Given the two articles, explain each of the SDLC phases and add how each phase of the SDLC supports the Security development life cycle.

References

Kalaimannan, E. & Gupta, J. (2017). The Security Development Lifecycle in the Context of Accreditation Policies and Standards, IEEE Security & Privacy, vol. 15, no. , pp. 52-57, Jan./Feb. 2017, doi:10.1109/MSP.2017.14

Radack, S. (n.d.). The system development life cycle (SDLC).