• Onboard For Tech Teams

    • Reduce initial time to productivity.
    • Increase employee tenure.
    • Plug-and-play into HR onboarding and career pathing programs.
    • Customize for ad-hoc and cohort-based hiring approaches.

    Learn more
  • Upskill For Tech Teams

    • Upgrade and round out developer skills.
    • Tailor to tech stack and specific project.
    • Help teams, business units, centers of excellence and corporate tech universities.

    Learn more
  • Reskill For Tech Teams

    • Offer bootcamps to give employees a running start.
    • Create immersive and cadenced learning journeys with guaranteed results.
    • Supplement limited in-house L&D resources with all-inclusive programs to meet specific business goals.

    Learn more
  • Design For Tech Teams

    • Uplevel your existing tech learning framework.
    • Extend HR efforts to provide growth opportunities within the organization.
    • Prepare your team for an upcoming tech transformation.

    Learn more

HEAVENS

Get your team started on a custom learning journey today!

Our Boulder, CO-based learning experts are ready to help!

Get A Quote!

Course Summary

Home > Courses >Secure Coding Training >Cybersecurity >HEAVENS

The HEAVENS training course ​is designed to help students understand the HEAVENS security model. Safety and Security are two seemingly contradictory system features, which have challenged researchers for decades. Traditionally, these two features have been treated separately, but due to the increasing knowledge about their mutual impacts, similarities, and interdisciplinary values, they have become more important. The HEAling Vulnerabilities to ENhance Software Security and Safety (HEAVENS) security model analyzes threats based on Microsoft’s STRIDE approach and ranks the threats based on a risk assessment. 

The course begins with a discussion of the HEAVENS model and then compares the model to other models such as SAHARA. Next, the course covers threat analysis using STRIDE. The course concludes with a discussion on how to transition threat modeling output to the HEAVENS format and concludes with several case studies and exercises.

Purpose
Learn about the HEAVENS security model and how to transition output to HEAVENS format.
Audience
Any technical professional looking to align existing processes for functional safety with usability for non-security specialists.
Role
Business Analyst - Project Manager - Software Developer - System Administrator - Technical Manager - Web Developer
Skill Level
Introduction
Style
Learning Spikes
Duration
1 Day
Related Technologies
Download
imgprinter
  • Productivity Objectives:
    • Describe the HEAVENS security model  
    • Compare and Contrast HEAVENS model to other models
    • Evaluate how to transition outputs to HEAVENS
Learn About Virtual Training

Request Information

Get your team upskilled or reskilled today. Chat with one of our experts to create a custom training proposal. Fully customized at no additional cost.

100secure

If you are not completely satisfied with your training class, we'll give you your money back.

secure100 secure100 secure100 secure100

about our training

  • keywordicon1
    Real-World Content

    Project-focused demos and labs using your tool stack and environment, not some canned "training room" lab.

  • keywordicon2
    Expert Practitioners

    Industry experts with 15+ years of industry experience that bring their battle scars into the classroom.

  • keywordicon3
    Experiential Learning

    More coding than lecture, coupled with architectural and design discussions.

  • keywordicon4
    Fully Customized

    One-size-fits-all doesn't apply to training teams. That's where we come in!

What You'll Learn

In the HEAVENS training course, you'll learn:

  • Introduction to HEAVENS
    • What is the HEAVENS security model?
    • Background
  • Approaches to Security Modeling
    • How is HEAVENS used to model threats to automate security?
    • Comparison with other security models (e.g., SAHARA)
    • Workflow
  • Threat Analysis
    • STRIDE and security attributes
    • Threats and vulnerabilities
  • Risk Assessment
    • Threat Level (TL)
    • Impact Level (IL)
    • Security Level (SL)
  • Security Requirements
  • Heavens Security Model and Common Criteria
  • How to Transition Threat Modeling Output to HEAVENS
Real-world content

Project-focused demos and labs using your tool stack and environment, not some canned "training room" lab.

Expert Practitioners

Industry experts that bring their battle scars into the classroom.

Experiential Learning

More coding than lecture, coupled with architectural and design discussions.

Fully Customized

One-size-fits-all doesn't apply to training teams. That's where we come in!

Elite Instructor Program

We recently launched our internal Elite Instructor Program. The community driven instructor program is designed to support instructors in transforming students’ lives by consistently showing a world-class level of engagement, ability, and teaching prowess. Reach out today to learn more about our instructors.

Customized Technical Learning Solutions to Help Attract and Retain Talented Developers

Get In Touch
Talk to one of our Learning Solution Architects today

Let DI help you design solutions to onboard, upskill or reskill your software development organization. Fully customized. 100% guaranteed.

DevelopIntelligence leads technical and software development learning programs for Fortune 500 companies. We provide learning solutions for hundreds of thousands of engineers for over 250 global brands.

99statisfaction1 Educate learners using experienced practitioners.
pularsight Proven customization process is guaranteed.
budgetnewlogo We're a strategic partner, not just another vendor.

“I appreciated the instructor’s technique of writing live code examples rather than using fixed slide decks to present the material.”

VMware
vmware View more