Cyber Secure Coder (Exam CSC-210) By CertNexus

Course Format: Instructor Led, Virtual or on site training.
This course presents an approach for dealing with security and privacy throughout the entire software development lifecycle. You will learn about vulnerabilities that undermine security, and how to identify and remediate them in your own projects. You will learn general strategies for dealing with security defects and misconfiguration, how to design software to deal with the human element in security, and how to incorporate security into all phases of development.

This course will help you to:

Understand security compliance needs and requirements.

  • Learn to employ best practices in software development to develope a secure software

This course includes hands on activities for each topic area. The goal of these activities is to demonstrate concepts utilizing two universal languages Python and Java Script. Developers who use alternate languages will be able apply the principles from the activities to any coding languages.

Objectives

In this course, you will identify many of the common risks involved in using conventional end-user technology, as well as ways to use it safely, to protect yourself from those risks.You will:

•   Identify the need for security in your software projects.

•   Eliminate vulnerabilities within software.

•  Use a Security by Design approach to design a secure architecture for your software.

Audience

This course is designed for software developers, testers, and architects who design and develop software in various programming languages and platforms, including desktop, web, cloud, and mobile, and who want to improve their ability to deliver software that is of high quality, particularly regarding security and privacy.

This course is also designed for students who are seeking the CertNexus Cyber Secure Coder (CSC) Exam CSC-210 certification.

Prerequistes

For this course, you will need one computer for each student and one for the instructor. Each computer will need the following minimum hardware configurations:
•  1 GHz or faster 32-bit (x86) or 64-bit (x64) processor
•  2 gigabytes (GB) RAM (32-bit or 64-bit)
•  20 GB available hard disk space (32-bit or 64-bit)
•  Projection system to display the instructor's computer screen
•  Windows® 10/8.1/8/7/Vista (64-bit).
•   Python version 3.8.1 (python-3.8.1.amd64.msi, provided with the course data files).
•   PyCharm Community Edition version 2019.3.3 (pycharm-community-2019.3.3.exe, provided with the course data files). Python is distributed under the Python Software Foundation License (PSFL). PyCharm Community Edition is distributed under the Apache® License 2.0.

Course Content

Lesson 1: Identifying the Need for Security in Your Software Projects

Topic A: Identify Security Requirements and Expectations
Topic B: Identify Factors That Undermine Software Security
Topic C: Find Vulnerabilities in Your Software
Topic D: Gather Intelligence on Vulnerabilities and Exploits

Lesson 2: Handling Vulnerabilities

Topic A: Handle Vulnerabilities Due to Software Defects and Misconfiguration
Topic B: Handle Vulnerabilities Due to Human Factors
Topic C: Handle Vulnerabilities Due to Process Shortcomings

Lesson 3: Designing for Security

Topic A: Apply General Principles for Secure Design
Topic B: Design Software to Counter Specific Threats

Lesson 4: Developing Secure Code

Topic A: Follow Best Practices for Secure Coding
Topic B: Prevent Platform Vulnerabilities
Topic C: Prevent Privacy Vulnerabilities

Lesson 5: Implementing Common Protections

Topic A: Limit Access Using Login and User Roles
Topic B: Protect Data in Transit and At Rest
Topic C: Implement Error Handling and Logging
Topic D: Protect Sensitive Data and Functions
Topic E: Protect Database Access

Lesson 6: Testing Software Security

Topic A: Perform Security Testing
Topic B: Analyze Code to find Security Problems
Topic C: Use Automated Testing Tools to Find Security Problems

Lesson 7: Maintaining Security in Deployed Software

Topic A: Monitor and Log Applications to Support Security
Topic B: Maintain Security after Deployment

Appendix A

Mapping Course Content to Cyber Secure Coder (Exam CSC-210)

Our services are tailor-made to our client’s needs. If you have
a specific requirement, please contact us to see how we can
be of use to you and your organisation.