Secure Ideas - Foundational Application Security Training (FAST)

Foundational Application Security Training (FAST)

Instructor: Kevin Johnson
Course Length: 8-Hours
Format: Live Online or On-Demand

View Live Online Class Schedule
Register for On-Demand Training
Secure Ideas - Foundational Application Security Training (FAST)

The Foundational Application Security Training (FAST) course is an 8-hour class focused on explaining the fundamentals of applications and their security. This lecture-focused class is designed to allow managers, product owners, support staff and non-developers understand application security. This lecture includes what makes up the various modern application technologies, the application development process, what vulnerabilities and risk are exposed via applications and how the attacks happen. This course will enable organizations to improve how they focus on application security while continuing to increase the coordination between the various teams including development, project management, product owners, IT, and security. Attendees will be able to understand and explain the various risks and controls within a secure modern application environment.

Topics/Agenda

  • Introduction – Why focus on Application Security?
  • Security Foundation
    • CIA
    • Identity and Access Management
    • Security Controls
  • Security by Design Principles
  • Design best practices to build secure software
  • Securing the dev lifecycle
    • Waterfall vs Agile
  • Testing tools
  • OWASP® Top 10 Vulnerabilities
  • Definitions and risk discussion
  • Web Penetration Testing
    • Scoping
    • Prepping
    • Testing Methodology
    • Reporting

WHO SHOULD TAKE THIS COURSE

  • Anyone

Prerequisites

This class has no prerequisites. It is lecture-based, therefore there are no laptop requirements.

Live Online

Learn via live stream from instructors that are in the field utilizing the techniques they teach. Classes are split into four training days that are each four hours long. Live Online training includes six months access to dedicated class channels in the Antisyphon Discord server, six months access to live class recordings, a certificate of participation, and 12 months complimentary access to the Antisyphon Cyber Range.

On-Demand

Learn at your own pace with access to course content, lectures, and demos in the Antisyphon On-demand learning platform. Most courses are offered with lifetime access to the course and content updates. All On-demand courses include content update alerts, access to dedicated support channels in the Antisyphon Discord server, a certificate of participation, and 12 months complimentary access to the Antisyphon Cyber Range.

Live Online w/ On-Demand Bundle

This is the best of both worlds! Attend the live online class at its next scheduled interval and gain access to the online training modules in the Antisyphon On-demand training platform. Bundle also includes six months access to dedicated class channels in the Antisyphon Discord server, six months access to live class recordings, a certificate of participation, and 12 months complimentary access to the Antisyphon Cyber Range.

TRAINER & AUTHOR

Kevin Johnson

Kevin Johnson
Kevin Johnson is the Chief Executive Officer of Secure Ideas. Kevin has a long history in the IT field including system administration, network architecture and application development. He has been involved in building incident response and forensic teams, architecting security solutions for large enterprises, and penetration testing everything from government agencies to Fortune 100 companies. In addition, Kevin is a faculty member at IANS and was an instructor and author for the SANS Institute.

COURSE SCHEDULE

Check back for a Zoom running near you