Sheikh Younus
Program Summary
Cybr’s Introduction to Application Security (AppSec) course provides students with a high-level understanding of Application Security concepts, secure software development frameworks, the most common application security threats and secure software development best practices. Some topics covered include Application Security as a field, it’s scope, and the skills required for related jobs; Overview of OWASP resources and the NICE Framework; Critical Application Security concepts; Threat Modeling concepts and approaches; The current state of web, mobile, and cloud application security based on research and data; Cloud access control and permissions; Building secure APIs in the cloud; AppSec testing methods and concepts; Pen-testing in a safe and legal environment, including example brute force, SQL injection, and XSS attacks; and how to handle open-source software with known vulnerabilities
Outcomes/Objectives
Upon completion of this course, students will:
Learn how to build more secure software to power your organization’s web, mobile, or cloud applications
Learn core concepts of AppSec and how to apply them to real-world applications
Learn how to use important frameworks & tools to help create more secure software products / applications
Understand the top 10 OWASP Web Application Risks and the top 10 OWASP Mobile Application Risks
Learn about top cloud application security risks and concepts
Learn about the most efficient application security testing methodologies
Perform hands-on pen-testing with demonstrations
Deliverable
Enroll in the Introduction to AppSec course.
Complete all lessons and quizzes to receive the course certificate.
Program Duration
3 hours
Skills / Knowledge
- NICE Framework
- OWASP
- Application Security
- Threat Modeling
- Cloud Access Control
- Cloud Access Permissions
- Building APIs
- AppSec testing
- Penetration Testing