top of page

SCA Body of Knowledge (SCA-BoK) & Reference Materials

The SCA references numerous leading frameworks and standards for Secure Software Development Practices (SSDP) in an effort to provide “industry-recognized secure practices” references. These voluntary consensus standards, most publicly available at no cost, are referenced by the SCA's conformity assessment.

Industry-Recognized Secure Practices

For industry-recognized secure practices, the SCA’s intent is to leverage freely-available content that are available at no cost to the public. In the realm of secure development practices, there are certain voluntary consensus standards that are important to consider as industry-recognized practices and those primarily include, but are not limited to:

Useful References

For reference materials, the following material can be valuable:

Secure Code Alliance Body of Knowledge (SCA-BoK)

SCA-BoK

The SCA-BoK is a summarized version of these industry-recognized secure practices that provides expectations for knowledge / competency associated with the Certified SCA Practitioner (CSCAP) and Certified SCA Architect (CSCAA) roles.

SCA BoK Cover.JPG
OTHER LINKS
SOCIAL
  • LinkedIn
  • Twitter
ABOUT

support@securecodealliance.com

30 N Gould St

Suite R

Sheridan, WY 82801

Subscribe To The SCA Newsletter

Thanks for subscribing!

SCA - Horizontal (B&W).png

© 2023 by Secure Code Alliance, LLC (SCA). All rights reserved.

This website does not render professional services advice and is not a substitute for dedicated professional services. If you have compliance questions, you should consult a cybersecurity or privacy professional to discuss your specific needs. SCA disclaims any liability whatsoever for any documentation, information, or other material which is or may become a part of the website. SCA does not warrant or guarantee that the information will not be offensive to any user. User is hereby put on notice that by accessing and using the website, user assumes the risk that the information and documentation contained in the website may be offensive and/or may not meet the needs and requirements of the user. The entire risk as to the use of this website is assumed by the user. SCA reserves the right to refuse service, in accordance with applicable statutory and regulatory parameters.

bottom of page