Secure Development
Main Speaker:
Yaniv Yechezkel
Tracks:
Codecyber
Seminar Categories:
BackendCode
Cyber
Programming
Course ID:
50954Date:
26/06/2024Time:
Daily seminar9:00-16:30
Location:
Daniel Hotel, HerzliyaOverview
In an age where cyber threats are constantly evolving, it’s imperative for developers to understand the principles of secure development and apply them throughout development process.
This seminar provides a concise yet comprehensive overview to elevate your understanding of secure development practices.
Goals and Objectives
- Get familiar with top resources to assist you in your cyber security journey.
- Gain practical insights into threat modeling, secure coding practices, and vulnerability mitigation.
Who Should Attend
- Developers
- Architects
- Product Managers
Course Contents
Module 1 – Information Security Fundamentals
- The CIA Triad
Module 2 – Getting Started with Cyber Security
- Cyber Security Pillars
- Resources
Module 3 – Application Security Risks
- Protecting and Defending Assets
- Asset Protection Objectives
- Application Security Risks Principles
Module 4 – Real-World Vulnerability Case Study
- CVE-2021-44228 (Log4Shell)
Module 5 – Application Security Risks and Mitigations
- OWASP Top 10
- OWASP Juice Shop
Module 6 – Secure Coding Practices
- Introduction to Secure Coding
- Why Secure Coding Matters
- The Developer Perspective
- The Attacker Perspective
- Security Mindset
- OWASP Proactive Controls
Module 7 – Secure Design Principles
- Secure Design Principles
Module 8 – Secure Software Development Life-Cycle (SSDLC)
- Software Development Life-Cycle (SDLC)
- Security and Agile
- Secure SDLC
- Microsoft SDL
- Secure DevOps (DevSecOps)