-
duration
2 days
-
language
German
A4Q Security Essentials
IT-Security in Software Projects
What can you expect from this course?
Sensitize your project team to the topic of security and enable all roles within the team to work on security recommendations. Prepare yourself and your team for the certification of the same name.
Goals of participating in A4Q Security Essentials
Any handling of IT demands a well thought-out protection of the IT infrastructure, but even the best technical security concept can be undermined if security-critical factors are disregarded in the operation or creation of software. For this reason, successful process models such as the Microsoft Security Development Lifecycle (MSDL) approach, ISO/IEC 27034-1 or the Open Software Assurance Maturity Model (OpenSAMM) recommend that every employee in a software project should receive solid basic training in IT security and specialized further training in accordance with his or her specific role in the project.
The course takes up these recommendations and provides a thorough introduction to IT security for all roles involved in a software development project, whether they are involved in the creation of an IT system, an application or an embedded system. The contents are illustrated by means of exercises and demonstrations.
Participants will receive a complete preparation for the Certified Security Essentials certificate exam.
The following contents will be covered
Introduction to aspects and methods of security
- What is IT security?
- Context of IT security: Assets, security gaps and threats
- Laws & Standards
- The Internet Protocol Suite
- Malware
- Typical attack patterns
- Social Engineering
- Basics of security in wireless networks
Security in project management
- Orientation of project activities towards security-related activities
- Security requirements that a particular system must meet
- Understand and explain the activities required to develop secure software systems and applications
Security in development
- Activities for the development of secure systems and applications
- Frequent safety-relevant errors in development
Security in requirements engineering
- Define basic security requirements
- Frequent safety-relevant errors in requirements engineering
Security during testing
- Testing as part of a security development life cycle
- various types of safety tests
Security in IT risk management
- How are threats detected and analyzed?
Certification Exam
During registration, you can book your participation in the corresponding certification examination.
With this booking you agree that we may forward your data to the examination company GASQ Service GmbH, Keltenring 15, 82041 Oberhaching, Germany.
The examination fee is not included in the course fee and will be quoted separately.
Non-native speakers may be eligible for a time bonus for the exam - please contact us for details.
If you are interested in taking the exam at a later date, we will inform you of the options available to you.
Exams in conjunction with Virtual Classroom seminars
You can flexibly take the exam after your Virtual Classroom training as an online remote exam. You will receive a voucher code that you can use to book your personal exam at a date and time of your choice.
The latest detailed description of the technical requirements and the software used for an online exam can be found here.
Target Audience
- Project Managers
- Testers
- Developers
- Requirements Managers
- Business Analysts
- Test Managers
- Test Consultants
* All prices here do not include tax
legend and explanation of the signs
-
guaranteed to run guaranteed to run
-
discounted price discounted price
Your Contact to the Academy
Mrs. Katrin Krauss
mail: akademie@imbus.de
phone: +49 9131 / 7518-750
fax: +49 9131 / 7518-50