Search our courses
Training

Ben Evans presents this Introduction to Modern Security up-to-date training course overview of Security in a Development environment. He integrates some labs as part of this session, so participants are required to bring a laptop.

About Ben Evans

Ben is author of four well-known O’Reilly books: The Well-Grounded Java Developer, Java: The Legend, the new edition of Java in a Nutshell and the recently released Optimizing Java. Ben is a regular speaker and educator on topics such as the Java platform, systems architecture, security, performance and concurrency at companies and conferences all over the world. He helps run the London Java Community, and represents the user community on Java’s governing body, the JCP Executive Committee. He is a Java Champion and 3-time JavaOne Rock Star Speaker.

Introduction to Modern Security

Course Code

GTJ50

Duration

1 Day

Course Fee

POA

Accreditation

N/A

Target Audience

  • Developers, Architects and Development Managers

Attendee Requirements

  • No specific requirements. 1-2 years development (ideally in Java or .NET) a significant advantage

We are sorry, there is currently no availability on this course.

contact us for more information

Ways to Attend this Course

  • In the Classroom
  • Private Training

Expand all

Course Description

Ben Evans presents this Introduction to Modern Security up-to-date training course overview of Security in a Development environment. He integrates some labs as part of this session, so participants are required to bring a laptop.

About Ben Evans

Ben is author of four well-known O’Reilly books: The Well-Grounded Java Developer, Java: The Legend, the new edition of Java in a Nutshell and the recently released Optimizing Java. Ben is a regular speaker and educator on topics such as the Java platform, systems architecture, security, performance and concurrency at companies and conferences all over the world. He helps run the London Java Community, and represents the user community on Java’s governing body, the JCP Executive Committee. He is a Java Champion and 3-time JavaOne Rock Star Speaker.

Course Outline

  Introduction
– Assets and Data
– Intellectual Property and Secrets
– Physical Assets
– Asset Classification and Replaceability

   Risks and Threats
– Top Data Breaches
– Risks
– Key components of a Risk
– Top Sectors for Attacks

Security Primer
– Risks & Threat Glossary
– Encryption Glossary
– Cryptography Glossary
– Hashing – Digital Signature
– Breaking a cryptographic system

Four Case Studies
– SWIFT Messaging
– Bitcoin & Ransomware
– Sony Pictures
– Stuxnet

Security Basics
– Infrastructure Attacks
– Why Use Risk Metrics?
– Cognitive Biases
– Attack Types
– Operational Security (OpSec)
– The Rugged Manifesto

Security in the Enterprise
– Legal aspects and related definitions
– Understanding Technical and Operational Risk
– Complexity of Enterprise Environment
– Legacy, Lifetime and “Crossing the Chasm”
– Complex Threat Landscape
– Vendor Risk

Application Security Architecture
– Separation of concerns
– Authentication and Authorisation
– Entitlement systems
– Defence in Depth
– Static Analysis Techniques
– OWASP project

Web Security
– What’s Good About the Web?
– What’s Bad About the Web?
– XSS & CSRF
– Javascript is Really Evil
– SQL Injection
– Introduction to TLS
– TLS proxying

Case Studies
– HMRC Web Rebate
– Heartbleed
– Shellshock
– Mobile Security

The Future of the Web
– HTTP and HTTP/2
– Future Web Architecture

Learning Path
Ways to Attend
  • Attend a public course, if there is one available. Please check our schedule, or register your interest in joining a course in your area.
  • Private onsite Team training also available, please contact us to discuss. We can customise this course to suit your business requirements.

Sorry, we are not taking bookings on this course at present

If you would like to contact us for more information on this course, you may do so here:

Contact us

Technical ICT learning & mentoring services

Private Team Training

Our instructors are specialist consultants with vast real world experience and expertise allowing them to design and deliver client-focused courses for your organisation.

Learn more about our Private Team Training

What Our Clients Say

“Very interesting course from an excellent instructor. Highly technical and well delivered”

 

Introduction to Modern Security - GTJ50

Dec '17

“Super experience. The instructor spoke with great knowledge and experience. The materials will be invaluable in the real world”

 

Professional Cloud Service Manager Certification training- GTC13

Dec '17

“Very useful course, making complex topics more approachable and the instructor was very good at getting concepts across and engaging with delegates and our specific needs”

 

Optimising Java - GTJ47

Dec '17

“This was an excellent course and I found it very interesting and enjoyable.  The instructor was a font of knowledge on all aspects of Big Data and Analytics and was enthusiastic about sharing his knowledge”

 

Applied Data Science and Big Data Analytics - GTBD7

Nov '17

“The instructor was fantastic at explaining lessons with applicable work type examples.  He was enthusiastic with what he was teaching which made learning the course more enjoyable”

 

Linux Essentials Certification - GTU2

Oct '17

"Intelligence is the ability to avoid doing work, yet
getting the work done"

Linus Torvalds, creator of Linux and GIT

Technical ICT learning & mentoring services

About GuruTeam

GuruTeam is a high-level ICT Learning, Mentoring and Consultancy services company. We specialise in delivering instructor-led on and off-site training in Blockchain, Linux, Cloud, Big Data, DevOps, Kubernetes, Agile, Software & Web Development technologies. View our Testimonials

Download our eBrochure
Our Accreditation Partners
Upcoming Courses

Optimising Java

16-17 April

Cork - limited places

Written & presented by Ben Evans: adapted from his current O’Reilly book Optimizing Java.

Learn More

Blockchain

May dates

Dublin, Cork and Galway

Courses designed, written & presented by Fintech expert, incorporating Ethereum & Corda

Learn More

Linux Certification

April, May and June dates

Cork

Linux Professional Institute and CompTIA accredited courses: Linux Essentials, LPIC-1 and LPIC-2

Learn More

Service Manager

15-17 May

Dublin

Professional Cloud Service Manager Certification training - ITIL in the Cloud. Our best-selling cloud course

Learn More

Newsletter

Stay up to date, receive updates on scheduled dates, new courses, offers, and events.

Subscribe to our Newsletter