Details
Note: This is to declare that it is a DoD approved course.
Outline
- Domain 1: Secure Software Concepts
- Concepts of Secure Software
- Principles of Security Design
- Security Privacy
- Governance, Risk, and Compliance
- Methodologies for Software Development
- Domain 2: Security Software Requirements
- Policy Decomposition
- Classification and Categorization
- Functional Requirements - Use Cases and Abuse Cases
- Secure Software Operational Requirements
- Domain 3 - Secure Software Design
- Importance of Secure Design
- Design Considerations
- The Design Process
- Securing Commonly Used Architectures
- Domain 4 - Secure Software Implementation/coding
- Fundamental Programming Concepts
- Code Access Security
- Vulnerability Databases and Lists
- Defensive Coding Practices and Controls
- Secure Software Processes
- Domain 5 - Security Software Testing
- Artifacts of Testing
- Testing for Secure Quality Assurance
- Types of Testing
- Impact Assessment and Corrective Action
- Test Data Lifecycle Management
- Domain 6 - Software Acceptance
- Software Acceptance Considerations
- Post-release
- Domain 7 - Software Deployment, Operation, Maintenance and Disposal
- Installation and Deployment
- Operations and Maintenance
- Disposal of Software
- Domain 8 - Supply Chain and Software Acquisition
- Supplier Risk Assessment
- Supplier Sourcing
- Software Development and Test
- Software Delivery, Operations and Maintenance
- Supplier Transitioning
NetCom Learning helps build innovative learning organizations in the workplace by structuring a smarter workforce, supporting learning changes, and driving learning growth. Since 1998 we have been empowering organizations to reach optimal performance results and address challenges by managing all aspects of organizational learning.
NetCom Learning is honored to be recognized as Microsoft's Worldwide Training Partner of the Year by Microsoft and as a Top 20 IT Training Company by TrainingIndustry.com for three years. We offer over 1,500 courses available to organizations around the world, encompassing all your technology and business training needs. From authorized or foundational training to specialized certifications, we empower organizations to achieve a competitive advantage. In addition, we provide customers with a choice of customized private programs, convenient scheduling options, flexible delivery formats, and continuous learning support, all tailored towards minimizing the skills gap and gaining maximum business impact for your organization. ...