Posted on by Achim D. Brucker, licensed under CC BY-ND 4.0.

One-Day “Security Testing for Developers” Training in Sheffield

Software security vulnerabilities are a serious threat to software vendors and their customers: they can result in both monetary loss and loss of reputation. Thus, implementing a rigid secure software development life-cycle (SDLC) is a competitive advantage for a software vendor. Security testing is an important part of any SDLC. Moreover, it is commonly accepted that security testing should be applied as early as possible in software development.

Security Testing as Part of the Software Development Life-Cycle

Interested in applying Security Testing during development? We will offer a one-day continuous professional development (CDP) training on the 13th of September at The University of Sheffield.

In this course, you will learn different security testing approaches (e.g., SAST, DAST), their specific strengths and weaknesses, how to evaluate tools and how to select the best “blend” of tools for their own software development. Moreover, the participants will learn how these tools can be integrated into various software development methods (ranging from traditional waterfall-like processes to agile processes supporting continues delivery).

This course on security testing is only one of our “compact” offerings for people working in industry. Similarly, we are also offering courses on secure programming or an introduction to secure software engineering.

For more information, please visit the website of The University of Sheffield or contact Achim Brucker. We also offer these courses as in-house courses, adapted to your needs and wishes.

Welcome to the blog of the Software Assurance & Security Research Team at the University of Exeter. We blog regularly news, tips & tricks, as well as fun facts about software assurance, reliability, security, testing, verification, hacking, and logic.

You can also follow us on Twitter: @logicalhacking.

Categories

Archive

Tags

academia ai android apidesign appsec bitcoin blockchain bpmn browser browserextensions browsersecurity bug certification chrome composition cordova dast devops devsecops dom dsbd efsm epsrc event extensions fixeffort floss formaldocument formalmethods funding hol-ocl hol-testgen humanfactor hybridapps iast industry internetofthings iot isabelle/hol isabelledof isadof latex logic maintance malicous mbst mobile mobile apps modelinference modeling monads monitoring msc ocl ontology opensource owasp patches pet phd phdlife phishing policy protocols publishing reliability research safelinks safety sap sast sdlc secdevops secureprogramming security securityengineering securitytesting semantics servicecomposition skills smartcontract smartthings softwareeinginering softwaresecurity softwaresupplychain solidity staff&positions statemachine studentproject tcb test&proof testing tips&tricks tools transport tuos uk uoe upgrade usability verification vulnerabilities vulnerableapplication webinar websecurity

Search


blog whole site