Did you ever wonder what it takes to ensure holistic and manageable software security? Would you like to be compliant to laws and regulations that demand action in that area, maybe via your customers? Or do you simply want to drive software quality through security and make it visible? Then this fundamental training is for you. In this training, you will be guided through the world of secure software development from different perspectives, ranging from governance topics to technological aspects like design, coding, testing, and operations. The training outline is based on OWASP SAMM, an open-source assurance maturity model for software security. Use this training to kick-start your secure development lifecycle, to reach the next level of software security, and to demonstrate the endeavor to your stakeholders.
The following topics are covered:
We approach each domain (governance, design, implementation, verification, operations) in the following way:
Ideally, you have some experience in software development or in managing a software development team. But even if you are just getting started with it, there will be insights for you to take away and to apply in your future work.