Cyber Secure Coder

Expand all

Course Description

 

The stakes for software security are very high, and yet many development teams deal with software security only after the code has been developed and the software is being prepared for delivery. As with any aspect of software quality, to ensure successful implementation, security and privacy issues should be managed throughout the entire software development lifecycle.This Cyber Secure Coder training course presents an approach for dealing with security and privacy throughout the entire software development lifecycle. You will learn about vulnerabilities that undermine security, and how to identify and remediate them in your own projects. You will learn general strategies for dealing with security defects and misconfiguration, how to design software to deal with the human element in security, and how to incorporate security into all phases of development.

Course Objectives:

In this course, you will employ best practices in software development to develop secure software.You will:

• Identify the need for security in your software projects.
• Eliminate vulnerabilities within software.
• Use a Security by Design approach to design a secure architecture for your software.
• Implement common protections to protect users and data.
• Apply various testing methods to find and correct security defects in your software.
• Maintain deployed software to ensure ongoing security.

Course Outline

Lesson 1:Identifying the Need for Security in Your Software Projects

Topic A:Identify Security Requirements and Expectations

Topic B:Identify Factors That Undermine Software Security

Topic C:Find Vulnerabilities in Your Software

Topic D:Gather Intelligence on Vulnerabilities and Exploits

Lesson 2:Handling Vulnerabilities

Topic A:Handle Vulnerabilities Due to Software Defects and Misconfiguration

Topic B:Handle Vulnerabilities Due to Human Factors

Topic C:Handle Vulnerabilities Due to Process Shortcomings

Lesson 3:Designing for Security

Topic A:Apply General Principles for Secure Design

Topic B:Design Software to Counter Specific Threats

Lesson 4:Developing Secure Code

Topic A:Follow Best Practices for Secure Coding

Topic B:Prevent Platform Vulnerabilities

Topic C:Prevent Privacy Vulnerabilities

Lesson 5:Implementing Common Protections

Topic A:Limit Access Using Login and User Roles

Topic B:Protect Data in Transit and At Rest

Topic C:Implement Error Handling and Logging

Topic D:Protect Sensitive Data and Functions

Topic E:Protect Database Access

Lesson 6:Testing Software Security

Topic A:Perform Security Testing

Topic B:Analyze Code to find Security Problems

Topic C:Use Automated Testing Tools to Find Security Problems

Lesson 7:Maintaining Security in Deployed Software

Topic A:Monitor and Log Applications to Support Security

Topic B:Maintain Security after Deployment

Appendix A:Mapping Course Content to Cyber Secure Coder (Exam CSC-110)

Exam

• This course is designed for students who are seeking the Cyber Secure Coder (CSC) Exam CSC-110 certification.

Learning Path

• There are several options that may suit your business needs. Please contact us for further information.

• Cyber Security Overview
• CompTIA Cybersecurity Analyst+ Certification
• CyberSAFE
• CyberSec First Responder

Ways to Attend

• Attend a public course, if there is one available. Please check our schedule, or register your interest in joining a course in your area.
• Private onsite Team training also available, please contact us to discuss. We can customise this course to suit your business requirements.