10/19/25, 7:15 AM D487 Secure SW Design EXAM 2025 (Actual Exam) Questions with verified Answers (Latest Update 2025) UPDATE!! Flashcards …
D487 Secure SW Design EXAM 2025 (Actual
Exam) Questions with verified Answers (Latest
Update 2025) UPDATE!!
Save
Practice questions for this set
Learn 1 /7 Study with Learn
Terms in this set (146)
Which practice in the Ship A5 policy compliance analysis
(A5) phase of the security
development cycle
verifies whether the
product meets security
mandates?
https://quizlet.com/1094904569/d487-secure-sw-design-exam-2025-actual-exam-questions-with-verified-answers-latest-update-2025-update-flash-ca… 1/22
,10/19/25, 7:15 AM D487 Secure SW Design EXAM 2025 (Actual Exam) Questions with verified Answers (Latest Update 2025) UPDATE!! Flashcards …
Which post-release PRSA1: External vulnerability disclosure response
support activity defines
the process to
communicate, identify, and
alleviate security threats?
What are two core Governance, Construction
practice areas of the
OWASP Security
Assurance Maturity Model
(OpenSAMM)?
Which practice in the Ship Vulnerability scan
(A5) phase of the security
development cycle uses
tools to identify
weaknesses in the
product?
Which post-release Security architectural reviews
support activity should be
completed when
companies are joining
together?
Which of the Ship (A5) Analyze activities and standards
deliverables of the
security development
cycle are performed
during the A5 policy
compliance analysis?
Which of the Ship (A5) white-box security test
deliverables of the
security development
cycle are performed
during the code-assisted
penetration testing?
https://quizlet.com/1094904569/d487-secure-sw-design-exam-2025-actual-exam-questions-with-verified-answers-latest-update-2025-update-flash-ca… 2/22
, 10/19/25, 7:15 AM D487 Secure SW Design EXAM 2025 (Actual Exam) Questions with verified Answers (Latest Update 2025) UPDATE!! Flashcards …
Which of the Ship (A5) license compliance
deliverables of the
security development
cycle are performed
during the open-source
licensing review?
Which of the Ship (A5) Release and ship
deliverables of the
security development
cycle are performed
during the final security
review?
How can you establish iterative development
your own SDL to build
security into a process
appropriate for your
organization's needs
based on agile?
How can you establish continuous integration and continuous deployments
your own SDL to build
security into a process
appropriate for your
organization's needs
based on devops?
How can you establish API invocation processes
your own SDL to build
security into a process
appropriate for your
organization's needs
based on cloud?
https://quizlet.com/1094904569/d487-secure-sw-design-exam-2025-actual-exam-questions-with-verified-answers-latest-update-2025-update-flash-ca… 3/22
D487 Secure SW Design EXAM 2025 (Actual
Exam) Questions with verified Answers (Latest
Update 2025) UPDATE!!
Save
Practice questions for this set
Learn 1 /7 Study with Learn
Terms in this set (146)
Which practice in the Ship A5 policy compliance analysis
(A5) phase of the security
development cycle
verifies whether the
product meets security
mandates?
https://quizlet.com/1094904569/d487-secure-sw-design-exam-2025-actual-exam-questions-with-verified-answers-latest-update-2025-update-flash-ca… 1/22
,10/19/25, 7:15 AM D487 Secure SW Design EXAM 2025 (Actual Exam) Questions with verified Answers (Latest Update 2025) UPDATE!! Flashcards …
Which post-release PRSA1: External vulnerability disclosure response
support activity defines
the process to
communicate, identify, and
alleviate security threats?
What are two core Governance, Construction
practice areas of the
OWASP Security
Assurance Maturity Model
(OpenSAMM)?
Which practice in the Ship Vulnerability scan
(A5) phase of the security
development cycle uses
tools to identify
weaknesses in the
product?
Which post-release Security architectural reviews
support activity should be
completed when
companies are joining
together?
Which of the Ship (A5) Analyze activities and standards
deliverables of the
security development
cycle are performed
during the A5 policy
compliance analysis?
Which of the Ship (A5) white-box security test
deliverables of the
security development
cycle are performed
during the code-assisted
penetration testing?
https://quizlet.com/1094904569/d487-secure-sw-design-exam-2025-actual-exam-questions-with-verified-answers-latest-update-2025-update-flash-ca… 2/22
, 10/19/25, 7:15 AM D487 Secure SW Design EXAM 2025 (Actual Exam) Questions with verified Answers (Latest Update 2025) UPDATE!! Flashcards …
Which of the Ship (A5) license compliance
deliverables of the
security development
cycle are performed
during the open-source
licensing review?
Which of the Ship (A5) Release and ship
deliverables of the
security development
cycle are performed
during the final security
review?
How can you establish iterative development
your own SDL to build
security into a process
appropriate for your
organization's needs
based on agile?
How can you establish continuous integration and continuous deployments
your own SDL to build
security into a process
appropriate for your
organization's needs
based on devops?
How can you establish API invocation processes
your own SDL to build
security into a process
appropriate for your
organization's needs
based on cloud?
https://quizlet.com/1094904569/d487-secure-sw-design-exam-2025-actual-exam-questions-with-verified-answers-latest-update-2025-update-flash-ca… 3/22
