The Cybersecurity by Design training course reframes the importance of security coding by examining proven design principles that create more secure code. Security should be design-first instead of code-last.
The course begins with a quick review of the common security attacks and strategies to prevent those attacks. Using these concepts as a baseline to illustrate the ineffectiveness of a code-last strategy, the course then moves into a discussion on the importance of reframing security and thinking about security in the context of design. Through the reframing journey, the course introduces Domain-Driven-Design as a useful mechanism to apply a secure-first strategy. Throughout this discussion, the course looks at implementation strategies and techniques and common issues that introduce threats into the codebase. The course concludes with a discussion about security best practices as well as a design workshop customized for the client organization.
Purpose
|
Learn how security can be designed into, managed and maintained within a development lifecycle. |
Audience
|
Anyone with an interest in building and maintaining secure systems lifecycle. Some development experience preferred. |
Role
| Software Developer - Technical Manager - Web Developer |
Skill Level
| Intermediate |
Style
| Workshops |
Duration
| 5 Days |
Related Technologies
| Software Engineering Training | Design Patterns |
Productivity Objectives
- Explain the main SDLC Models and their principal differences.
- Apply secure development techniques from the initial design stage and throughout a development lifecycle.
- Recognize some of the latest vulnerabilities and how to counter/mitigate them.
- Interpret various testing strategies.