Certified Application Security Engineer (CASE.Net)

Kaplan Singapore


Course introduction

Successful candidates will be able to:

  • Gain in-depth understanding of secure SDLC and secure SDLC models
  • Gain knowledge of OWASP Top 10, threat modelling, SAST and DAST
  • Capture security requirements of an application in development
  • Define, maintain and enforce application security best practices
  • Perform manual and automated code review of application
  • Conduct application security testing for web applications to assess the vulnerabilities
  • Drive development of a holistic application security programme
  • Rate the severity of defects and publishing comprehensive reports detailing associated risks and mitigations
  • Work in teams to improve security posture
  • Learn application security scanning technologies such as AppScan, Fortify, WebInspect, static application security testing (SAST), dynamic application security testing (DAST), single sign-on and encryption
  • Follow secure coding standards that are based on industry-accepted best practices such as OWASP Guide, or CERT Secure Coding to address common coding vulnerabilities.
  • Create a software source code review process that is a part of the development cycles (SDLC, Agile, CI/CD)



Course Pre-Requisites


Minimum at Age: 16 years old

Work Experience: .NET Developers with a minimum of 2 years of experience



Target Audience


  • .NET Developers with a minimum of 2 years of experience and individuals who want to become application security engineers/analysts/testers
  • Individuals involved in the role of developing, testing, managing or protecting wide area of applications



Course Outline


Mode of training: Self-Study/Live Online/Master Class/In Person

Duration: 24 hours or 3 full-day sessions

Course Structure:

Module 1: Understanding Application Security, Threats, and Attacks
Module 2: Security Requirements Gathering
Module 3: Security Application Design and Architecture
Module 4: Secure Coding Practices for Input Validation
Module 5: Secure Coding Practices for Authentication and Authorization
Module 6: Secure Coding Practices for Cryptography
Module 7: Secure Coding Practices for Session Management
Module 8: Secure Coding Practices for Error Handling
Module 9: Static and Dynamic Application Security Testing (SAST & DAST)
Module 10: Secure Deployment and Maintenance



Available Course Sessions


Please click here to stay updated on upcoming sessions.



Trainer Profile


N.A

Kaplan reserves the right to change trainer, in light of unforeseen circumstances.



 

Top