Increase App Security & Accelerate Your Development Lifecycle
with Hands-On Security Workshops for Developers
Linux Foundation Training and Certification has launched new, hands-on Security Workshops designed to heighten the security mindset of your developers, accelerate the speed of releases and reduce costs.
The Security Workshops are offered as 1-day, 3-day and 3-day+, hands-on events that can be tailored to meet your organization’s specific needs. Conducted either live-virtual or in person, the 1-day workshop can be scaled up to 100 persons, while the intensive 3-day and 3-day+ versions can accommodate up to 15 developers.
“These workshops are designed to be light on lecture and heavy on practical, hands-on learning. We begin with offensive approaches that help developers think like hackers,” said Glenn ten Cate, Senior Cyber Security Instructor, Linux Foundation, and creator of the workshops. “Then we dive into the defensive side of things as participants apply secure design patterns and test implementation using their new offensive skills to close the learning loop.”
“Secure code starts with developers’ security mindset,” said Clyde Seepersad, SVP, General Manager, Training & Certification, Linux Foundation. “When they think about security as integral to development, they build code hardened and more ready for deployment, reducing the development lifecycle, increasing efficiency and productivity while conserving resources.”
Understanding Vulnerabilities and Security Threats (WSKF603) breaks down the OWASP® Top 10 Security Threats, helping developers understand the most common pitfalls and misconceptions associated with these risks. Participants leave this 1-day workshop with:
- Hands-on experience in exploiting and defending against each OWASP® Top 10 vulnerability
- Insights into the most common mistakes developers make for each risk
- Techniques to battle vulnerabilities
Secure Coding Fundamentals (WSKF601) empowers developers to independently write and verify secure software by design, making this workshop fundamental to security implementation. The main focus of this 3-day workshop is hands-on learning to build behavior-changing security knowledge and skills. Participants leave with the:
- Ability to independently test for web application vulnerabilities
- Skills to perform threat modeling sessions and prevent business logic vulnerabilities
- Understanding of how to fix vulnerabilities
- Knowledge of which secure design patterns to apply
- Knowledge to practice security by design using the Security Knowledge Framework
- Ability to use security automation that adds value to the CI/CD pipeline
Advanced Security Coding (WSKF602) adds additional hands-on labs, tailored to your organization and development team’s specific needs. Select one or multiple additional labs, up to seven per day. Each lab includes an explanation, scenarios of the vulnerability plus hands-on time for exploitation and fixing.