secure software development lifecycle swadlp training workshop

Secure SDLC Workshop

Hands ON | 5 DAYS | LAPTOP REQUIRED | 36 CPEs | SWADLP CURRICULUM

Hack2Secure’s Secure Software Development LifeCycle (Secure SDLC or SSDLC) Workshop provides hands-on exposure and relevant Case Studies to assist in integrating Security at every phase of Web Application Development Lifecycle. It ensures exposure on different Application Security standards and best practices from NIST, OWASP, CERT, PCI-DSS etc.

Key Take Away

  • Basic Security Concepts & OWASP Top10
  • Different phases of SDL from Security prospect
  • Secure Software Development and Assurance Methodologies
  • Gathering Security Requirements and Establishing Baseline
  • Software Security Risk Management
  • Security Checkpoints & Quality Gates
  • Product Security Policy
  • Secure Design Principles & Threat Modeling
  • Secure Coding Practices & Review Guidelines
  • Web Application Security Testing Tools, Techniques and Methodologies
  • Final Security Review Plan
  • Incident Handling Plan
  • Supply Chain Risk Management

A. Software Development Team

  • Application/Software Architects
  • Software Developers
  • QE/QA/Testing Team
  • Software Consultants
  • Research Engineers

B. Security Team

  • Security Engineers, Testers and Analyst
  • Application Penetration Testers
  • Security Consultants
  • Auditors
  • Product Security Office

C. Software Management Team

  • Program / Project / Product Managers & Directors
  • Team Leads
  • Assurance Team
  • Application Senior Management

D. Students [Management & Technical Stream], looking to pursue Career in Secure Software Development and Management

E. Anyone, Who wants to explore practices and processes in Secure Application Development

Workshop Curriculum Highlights

Click Here for Detailed Workshop Scope & Agenda

DAY 1 

Secure SDLC Phase#1: Training and Awareness

  • About Secure SDLC Process, Requirements & Methodologies
  • Adoption of Secure SDLC in Agile
  • Core Security Concepts & Related Attacks
  • Security Design Principles
  • Risk, Threat & Vulnerability. Risk Management concept
  • Secure SDLC Standards & Frameworks
  • Security Assurance Methodologies
  • Common Vulnerability Scoring System
  • Overview on OWASP Top10 Web Application Security Risk

DAY 2
Secure SDLC Phase#2: Security Requirements

  • Building Security Requirement Checklist and Defining Security Quality Gates
  • Creating Product Security Baseline
  • Addressing Web Vulnerabilities in Requirement gathering phase

Secure SDLC Phase#3: Ensuring Secure Design

  • Secure Design Methodologies
  • Design Level Security Controls
  • Threat Modeling [based on STRIDE]

DAY 3
Secure SDLC Phase#4: Secure Implementation (Coding)

  • Application Coding: Common Security Myths
  • CWE Top25 Programming Errors
  • Implementation Security Level Controls against different Web Security Attacks
  • Defensive Coding Practices
  • Security Code Review process & Best Practices

DAY 4
Secure SDLC Phase#5: Web Application Security Testing

  • Application Security Testing Tools, Techniques & Methodologies
    • Testing for Core Security Concepts
    • Testing for OWASP Top10 Web Application Vulnerabilities
  • Handling Security Defects

DAY 5
Secure SDLC Phase#6: Security Review & Response

  • Building Final Security Review Plan
  • Overview on Security Review Processes: Auditing, VA-PT
  • Incident Handling Process
  • Threats to Supply Chain Software
  • Software Deployment & Procurement Risk

Secure SDLC Phase#7: Security in Maintenance Cycle

  • Security Patch Management
  • Handling 3rd Party Library Upgrades
  • Application Disposal Policy

Click Here for Detailed Workshop Scope & Agenda

When:

  • Duration:        5 Days
  • Timing:          10:30 AM - 5:30 PM
  • Schedule:       24th - 28th April 2017

Where:

  • Venue: Hack2Secure, #681, 1st Floor, 15th Cross, 8th Main, 2nd Phase, JPNagar, Bangalore, Karnataka 560078
  • E: training@hack2secure.com
  • T: +91 (80) 49 58 32 99 ; +91 (80) 49 58 33 99

Commercials:

Send Details

Secure SDLC Workshop: Scope & Schedule

SWADLP Workshop Schedule

Batch# Duration When Where SWADLP Attempt Pricing
Batch#1 5 Days 24-28 April H2S, Bangalore Included Email us: training@hack2secure.com
Enquire Now

More details & queries

Learn More

Secure Web Application Development Lifecycle Practitioner (SWADLP)

Frequently Asked Questions

Can we take Secure Web Application Development Lifecycle Practitioner (SWADLP) Exam after attending this Workshop?

We will definitely say YES, if you are confident enough provided content, concepts and Case Studies delivered across the Workshop. This program is scoped to cover almost all sections and topics as per SWADLP exam curriculum, in fact a level higher than what is required from exam preparation prospect.

Can we take SWADLP Exam without attending this Workshop?

No specific training is required for SWADLP Certification. There are many sources of information available regarding the certification objectives' knowledge areas. Practical experience is an option; there are also numerous books and documentation available in the market covering Secure SDLC process. Another option is any relevant courses from training providers, like current one from Hack2Secure.

How this program can assist in my Professional Growth?

Today, Information Security Market is witnessing a surge in demand for skilled Security Professionals. As per Techcrunch, companies have now started giving preference to professionals, who possess Information Security skills along with domain knowledge in order to combat security job crunch. Professionals possessing unique Secure SDLC process implementation skills tends to get much higher preference over other and grow faster in the industry.

Will I have brighter Job Prospect, after attending this program?

Companies around the world use "certificate" as an assurance of Candidate skills. Due to real-time 'practical' orientation and Case study based process analysis, SWADLP program ensures hiring employer that candidates possesses required security skills and know-how to get the job done.

    Book an Exam  Contact Us  Enquire Now !