Course Description
OVERVIEW
The Certified Application Security Engineer (CASE.NET) credential assesses the critical security skills and knowledge required throughout a typical software development life cycle (SDLC), emphasising the significance of implementing secure methodologies and practises in today’s insecure operating environment.
Concurrently, the CASE certified training programme is being created to provide software professionals with the requisite competences that are needed by companies and academics worldwide.
It is intended to be a hands-on, comprehensive application security training that will assist software developers in developing secure apps.
The training curriculum covers all elements of the Software Development Lifecycle (SDLC), including designing, building, testing, and deploying an application.
Unlike other application security trainings, CASE extends beyond merely safe coding rules to cover secure requirement gathering, strong application design, and dealing with security concerns in the application development’s post development phases.
Course Outline
- Understanding Application Security, Threats, and Attacks
- Security Requirements Gathering
- Secure Application Design and Architecture
- Secure Coding Practices for Input Validation
- Secure Coding Practices for Authentication and Authorization
- Secure Coding Practices for Cryptography
- Secure Coding Practices for Session Management
- Secure Coding Practices for Error Handling
- Static and Dynamic Application Security Testing (SAST & DAST)
- Secure Deployment and Maintenance
Course Objective
This .NET application development focused security programs aims to deliver in-depth know-how to:
- Understand security, risks, threats, and attacks associated with .NET applications
- Collect and analyze application security requirements
- Develop secure .NET application design and architecture
- Implement secure coding practices to validate inputs
- Implement secure coding practices to authenticate and authorize application users
- Implement secure cryptography related coding practices
- Enforce session management with secure coding practices
- Error handling with secure coding practices
- Static and dynamic application security testing (SAST & DAST)
- Secure application deployment and maintenance
Requirements
- Basic understanding of .NET Framework, application development, and SDLC
Target audiences
- .NET Developers having at least 2 years of experience
- Individuals intending to become .NET application security engineers, analysts, or testers
- Professionals shouldering the roles to develop, test, manage, or protect a range of .NET applications