Hotline: 1800 PROGRESO (1800 776 4737)


Certified Secure Web Application Engineer (CSWAE) - Live Virtual Training
 
The Certified Secure Web Application Engineer course is designed to equip students with the knowledge and tools needed to identify and defend against security vulnerabilities in software applications. Students will put theory to practice by completing real world labs that include testing applications for software vulnerabilities, identifying weaknesses in design through architecture risks analysis and threat modeling, conducting secure code reviews and more.
 
On the final day of training, students will complete a real world hacking exercise on a live web application.
 
These secure coding skills are in desperate need today because the internet is one of the most dangerous places to do business; there are countless cases of valuable information being stolen from businesses because there was a vulnerability in their web applications. When programmers don't understand the principles of secure coding, doors are open to those who do.
 
 
Objectives:
 
Upon completion, students will:
  • Perform web application penetration testing to expose vulnerabilities.
  • Design & implement controls to defend against application vulnerabilities.
  • Integrate security best practices into the software development lifecycle.
  • Be ready to sit for the C)SWAE certification exam.
 
Course Pre-Requisites
 
Proficiency in web app programming in a language of your choice.
 
 
Who Should Attend
 
The Certified Secure Web Application Engineer Certification Course is designed for those have a background in web application development and want to have the skill set to make their applications secure. While not required, we recommend being familiar with general cyber security topics, including those taught in our C)ISSO: Information Systems Security Officer course.
 
 
Course Outline
 
Modules & Labs
1: Web Application Security
2: OWASP TOP 10
3: Threat Modeling & Risk Management
4: Application Mapping
5: Authentication and Authorization attacks
6: Session Management attacks
7: Application Logic attacks
8: Data Validation
9: AJAX attacks
10: Code Review and Security Testing
11: Web Application Penetration Testing
12: Secure SDLC
13: Cryptography
 
Appendix: Labs
Introduction & Instructions
1: Spoofing Authentication Cookies
2: How to Perform Cross Site Scripting (XSS)
3: Injection flaws
4: Improper Error Handling
5: Parameter Tampering
6: Denial of Service
7: Writing Java Secure Code
 
For more information on course modules, please refer to our brochure.
 
 
Funding
  • Productivity and Innovation Credit (PIC) scheme
*Enjoy up to 400% tax deduction or 60% cash payout under the Productivity and Innovation Credit (PIC) scheme for Staff Training.
Find out more here!
 
Terms and conditions apply. Please contact IRAS for assistance or clarification on PIC.
 
 
 
Download Course Brochure Download Registration Form Course Schedule
Related Courses
Information Systems Security Officer (CISSO)
The C)ISSO is designed for forward-thinking security professionals that want the advanced skillset necessary to manage and consult businesses on...
Penetration Testing Engineer (CPTE)
The Certified Penetration Testing Engineer course trains students on the 5 key elements of penetration testing: information gathering, scanning,...
Certified Penetration Testing Consultant (CPTC) - Live Virtual Training
The C)PTC is designed for cyber security professionals and IT network administrators who are interested in conducting Penetration tests against...
Certified Disaster Recovery Engineer (CDRE) - Live Virtual Training
The Certified Disaster Recovery Engineer certification course will prepare individuals to help their business handle the unexpected, while...
Certified Digital Forensics Examiner (CDFE) - Live Virtual Training
The Certified Digital Forensics Examiner course will benefit organizations, individuals, government offices, and law enforcement agencies in...
Certified Network Forensics Examiner (CNFE) - Live Virtual Training
The Certified Network Forensics Examiner will take your digital forensic skill set to the next level by navigating through over twenty modules of...
Certified Incident Handling Engineer (CIHE) - Live Virtual Training
The Certified Incident Handling Engineer course is designed to help incident handlers, system administrators, and general security engineers...
Certified Wireless Security Engineer (CWSE)
The Certified Wireless Security Engineer is prepared to identify those risk that wireless networks present for a business and to create and...
Certified Security Sentinel (CSS)
The Certified Security Sentinel certification course trains students on how attacks are performed, how to identify an attack, and how to secure...
Certified Vulnerability Assessor (CVA)
The Certified Vulnerability Assessor training help students understand the importance of vulnerability assessments.
Certified Security Leadership Officer (CSLO) - Live Virtual Training
The Certified Security Leadership Officer course is designed to give management an essential understanding of current security issues, best...
Certified Professional Ethical Hacker (CPEH) - Live Virtual Training
The Certified Professional Ethical Hacker course is the introductory training to mile2’s line of penetration testing courses and certifications.
Certified Virtual Machine Engineer (CVME 5.5)
The Certified Virtual Machine Engineer course is designed for those who need to understand virtualization and the impacts it can have on an...
Certified Information Security Management Systems - Lead Auditor (CISMS-LA) - Live Virtual Training
The Certified Information Security Management Systems—Lead Auditor certification course prepares students to competently lead audits of...
Certified Information Security Management Systems Lead Implementer (CISMS-LI) - Live Virtual Training
The Certified Information Security Management Systems—Lead Implementer certification course prepares students to help any organization through...
Fundamentals of Cybersecurity Incident Handling
Basic introduction to the main incident handling tasks and critical thinking skills that will help an incident handler perform their daily work.
Secure Coding Bootcamp
Combination of lecture, security testing and code review. You will learn the most common threats against applications and how to design and code...
 
Your Name
Contact No
E-mail
Subject
Message
Text Limit :
Security Code
 
20
890
186