Software Security Training for Developer

The protection of data and the safeguarding of your own software products against external attacks are becoming increasingly important – and more complex. Only through targeted competence building among developers can the security of software applications be ensured in the future.

Through this training, you will learn all the necessary fundamentals to secure your software. You will practice essential knowledge and skills and learn to successfully apply current security methods and appropriate tools. The learning content follows the entire software development process and is supplemented with regular exercises, enabling you to apply your newly acquired knowledge directly in your daily development work. With an optional oral exam at the end of the training, you can demonstrate your learning success and receive an additional distinction on your certificate of participation.

Since typical vulnerabilities and guidelines for secure software development differ depending on the programming language, we offer the training in various programming languages. For open trainings, Java is used by default. For internal trainings, we coordinate the programming language with you in advance.

• You are able to consider security already during the development of your software products.
• You can define security requirements for your product as well as independently conduct threat and risk analyses.
• You learn to adopt the attacker’s perspective to identify possible vulnerabilities.
• You can apply the principles of Security by Design and Defensive Coding.
• You know the typical vulnerabilities of your programming language as well as the appropriate guidelines for developing secure code.
• You know free security tools and how to use them, including automatically checking your code for vulnerabilities.

• What are typical entry points for attackers? 
  
• How can I take security into account already during development?
• How do I check whether my developed software is secure? 

Module 1: Introduction

• Raising awareness of the topic of security using practical examples
• Definition, delimitation and trends
• Relevant security laws and standards

Module 2: Defining requirements & analyzing risks

• Definition of security requirements using Evil User Stories
• Security as a topic in the agile development process
• Risk analysis: classification of risks and risk treatment

Module 3: Learning & applying methods

• Principles of Security by Design
• Secure coding guidelines for developers
• Typical weaknesses in the implementation
• Targeted use of free security tools

Software developers

Prior knowledge of security is not required.

As a supplement to our software security training, you have the opportunity to take an optional oral exam (30 minutes, live online). If passed successfully, this will be explicitly noted on your certificate of participation.

By passing the exam, you can document your acquired competencies and sustainably increase your career opportunities.