Software & Application Security Training

We offer training on Software & Application Security Training to our clients. Here is training preliminary content.

Application Security SSA:

  • Define and implement Software Security Assurance (SSA) program in your company
  • Define Application and Software Security practice and ISMS (policies, standards, processes, guidance, tools)
  • Integrate security into your Software Development Lifecycle (SDLC)
  • Automate specific parts of process
  • Measure effectiveness and KPIs
  • Secure Development Trainings
  • Integrations with other security tools (such are GRC, SOAR and similar tools)

Specific parts of Application Security practice:

  • Defining security requirements
  • Security architecture
  • Application security risk management and compliance
  • Threat modeling
  • Application Security Testing
    • SAST – Static Application Security Testing
    • SCA – Software Composition Analysis
    • IAST – Interactive Application Security Testing
    • Secrets Scanning
    • Container scanning
    • Configuration and environment hardening
    • API Security Testing
    • IaC – Infrastructure as Code
    • DAST – Dynamic Application Security Testing
    • RASP – Runtime Application Self-Protection
  • Application Security Monitoring
  • Vulnerabilities Assessment
  • Penetration Testing

We also will show Glog.AI as an integral part of DevSecOps which helps to make software more secure in Software Development Lifecycle (SDLC). See also Glog.AI Products and our Services.

Our products: Software Security – Glog.AI, Network [& End-point] Security – INPRESEC (Intelligent Predictive Security), Threat Intelligence – Security Predictions, Virtual Security Operations Center – vSOC.

Leave a Reply