 Critical
Web Application Security Training
Course Description
Event Summary:
Dates &
Locations: |
Schedule a Training Event |
| Schedule: |
8:30AM - 5:00 PM
(Registration & continental breakfast
starts at 8:15 AM) |
| Prof. Credits: |
8
CISSP CPE's |
| Registration: |
For more information on registration costs or group discounts please contact training@securityps.com |
| |
|
|
This Security PS training session presents an in-depth discussion of security
concepts that must be faced by companies who need to design, develop, deploy,
and manage effective and secure web applications. The concepts
and information presented in this session aim to raise the level of security
awareness for architects, developers, managers, and security practitioners who
need to understand web application risks at a technical level.
These concepts will help you and your team:
- Identify and understand areas of risk in web applications
- Apply security best practices to design and development process
- Reduce vulnerabilities and extra development cycles for security fixes
- Improve security and application development life cycle
Security professionals gain valuable insight to application layer security; managers
and developers learn how to apply security best practices to application design,
programming, and the development/deployment life-cycle. Learn how to reduce risk
and costs by applying security to web application development and deployment.
Topics
The discussions in this training draw from years of research and field experience.
Security concepts, technical discussions, and live demonstrations are used to
explain each security issue and principle
effectively.
Introduction and Concepts
- Information Security Principles
- Securing In Layers: Network vs.Host vs. Application
- Web Application Layers and Security
Web Application Vulnerabilities and Risks:
- Overview: Vulnerabilities and Observations
- Exploring Vulnerabilities / Attacks
- Session Theft
- SQL Injection
- HTML Injection
- Cross-Site Scripting (XSS)
- Parameter Manipulation
- Information Disclosure Vulnerabilities
- Cross Site Request Forgery (CSRF)
- Authorization attacks
- Many others...
- Live demonstrations and concept examples
- Categorize Design Vulnerabilities
Mitigating Risk at Design and Development
- Lessons Learned
- The Role of Policy, Standards, and Procedures
- The Role of Security Frameworks
- The Role of Web Application Security Assessments
This training session has received positive feedback from managers, developers
and information security specialists. Anyone actively involved with designing,
developing, auditing, or deploying web applications within their organization
will benefit from attending this technical training event.
Registration
To register for this training contact our training coordinator. All registrations must be received within one week of the event to receive confirmation of availability.
Group discounts
Group discounts are available for organizations who register five or more people for an event. This discount cannot be combined with any other discount or offer. For more information on group discounts contact training@securityps.com
Further Information
For more information regarding Security PS' web application security training or services, click here.
Cancellation and Refund Policy: Cancellations received by phone, email, or fax at least 2 weeks before the event date will be refunded the attendee's cost minus a $100 cancellation fee for each person(s) unable to attend. After this time, no refunds will be given.
|
