I received my CSSLP at the beginning of the year. I considered going for the CISSP but did not feel I had the proper years of experience in enough areas to qualify. The CSSLP I feel introduces the terminology, regulations, and how to integrate security in each area of the lifecycle. I feel like the CSSLP is the beginning of the process. After that comes digging into regulations and material to show how to counteract vulnerabilities and determining if your company has any guidelines on development security. One word of warning on the CSSLP the training material and the actual test questions are different. The questions in the training material are more definition/regulation based and for me on the test were scenario based. Also if you have not already done so if you work for a company engage your supervisor so that he/she can offer any department/company advice.