MOAT ACADEMY

SECURE CODING BOOTCAMP

with

MORE INFO.

Date: October 17, 2020 – November 14, 2020 (Saturdays).

Why Secure Coding Bootcamp?

Moat Academy Secure Coding boot camp is an Instructor-led immersive training as most people learn best in a classroom environment with a live instructor that provides opportunity for interactivity, a lot of hands-on from real life experiences and laboratory simulations that further deepen participants’ understanding and foster effective learning.

As the stakes for software security are very high, development teams can no longer wait to deal with software security after the code has been developed and/or being prepared for delivery. Just as with any aspect of software quality, to ensure successful implementation, security and privacy issues should be managed throughout the entire software development lifecycle.
During the boot camp, you will gain the skills and knowledge to:

Identify the need for security and eliminate vulnerabilities in your software projects.
Use a Security by Design approach to design a secure architecture for your software.
Leverage on many of the OWASP Top Ten best practices to protect users and data.
Apply various testing methods to find and correct security defects in your software.
Maintain deployed software to ensure ongoing security.

This program will enhance your current skill sets as it will ensure you develop highly protected applications for business and organizational use thus giving you an edge to an accelerated career in the software development industry; it will also prepare you for the Certnexus Cyber Secure Coder Examination (CSC-201)

Duration: 5 Days

Class Schedule: Saturdays (9:00 am – 5:00 pm)

Delivery Mode: Instructor-Led

Cohort Size: 10 -15

Pre-requisites:

This course presents secure programming concepts that apply to many different types of software development projects. Although this course uses Python®, HTML, and JavaScript® to demonstrate various programming concepts, you do not need to have experience in these languages to benefit from this course.

However, you should have some programming experience, whether it be developing desktop, mobile, web, or cloud applications.

If you are without any programming knowledge, we will advise you to sign up for our Full-Stack Development Boot camp

Who is this Programme for?

Individuals

Designed for software developers, testers, and architects who design and develop software in various programming languages and platforms, including desktop, web, cloud, and mobile, and who want to improve their ability to deliver software that is of high quality, particularly regarding security and privacy.

Penetration testers and Software security auditors will also benefit greatly from the boot camp

Chief Technical Officers (CTOs), Chief Information Security Officers (CISOs), CEOs and others who are tasked with the responsibility of protecting the system and data in an Organization

APPLY

Organizations

Any company that is interested in inculcating security best practices into their Software development process and regularly identifying areas of vulnerablities

Any company that is interested in mitigating against financial risks and security breaches which may be caused by software in use in their orgaization

Companies that prioritize bringing their IT and development team up to date in globally accepted best practices and security technologies

What You 'll Learn - Curriculum

Lesson 1: Identifying the Need for Security in Your Software Projects

Identify Security Requirements and Expectations
Identify Factors That Undermine Software Security
Find Vulnerabilities in Your Software
Gather Intelligence on Vulnerabilities and Exploits

Lesson 2: Handling Vulnerabilities

Handle Vulnerabilities Due to Software Defects and Misconfiguration
Handle Vulnerabilities Due to Human Factors
Handle Vulnerabilities Due to Process Shortcomings

Lesson 3: Designing for Security

Apply General Principles for Secure Design
Design Software to Counter Specific Threats

Lesson 4: Developing Secure Code

Follow Best Practices for Secure Coding
Prevent Platform Vulnerabilities
Prevent Privacy Vulnerabilities

Lesson 5:Implementing Common Protections

Limit Access Using Login and User Roles
Protect Data in Transit and At Rest
Implement Error Handling and Logging
Protect Sensitive Data and Functions
Protect Database Access

Lesson 6:Testing Software Security

Perform Security Testing
Analyse Code to find Security Problems
Use Automated Testing Tools to Find Security Problems

Lesson 7: Maintaining Security in Deployed Software

Monitor and Log Applications to Support Security
Maintain Security after Deployment

Still Need the Detailed Outline? Click here

Delivered By Subject Matter Experts

Lead Instructor

Abiola Ilupeju

Abiola is a Technopreneur, an ardent advocate of quality software; passionate about seeing that businesses reap the full benefits of their investments in IT. Abiola holds an M.Sc in Information Security and Privacy with Distinction from Cardiff University, United Kingdom and B.Sc in Computer Science with Economics from Obafemi Awolowo University Ile-Ife. As a Certified Ethical Hacker, she understands the possible means by which IT Systems can be exploited by a hacker, also her knowledge as a Certified Information System Auditor (CISA) makes her understand how controls can be built into a software system to ensure the business is protected from frauds and security breach. She also a certified digital forensic investigator as a Cellebrite Certified Operator (CCO) and certified in IT Service Management (ITIL).

As evidence to her good eye for software quality; she won the "Best Bug Award" at the Testathon (a hackaton for testers) organized by the Global App Testing in 2016.

Abiola has more than a decade of professional experience across varying fields of Information Technology; ranging from being an Application developer, Quality Assurance manager to Information System Auditor. She enjoys programming in Javascript, PHP and Python in which she developed various applications among which is a patented software product,Customer Management and Self-Service portal.

She was mentored and trained by the global leader in Cyber Security -Symantec Corporation at their headquarters in California USA. She worked closely with the development team at Symantec, where she was further exposed to various best practices and newer technologies in software development. While at Silicon Valley, She also had the opportunity of interacting with other leading IT companies such as Linkedin, Mozilla, Youtube, Google, Autodesk etc . She is passionate about impacting knowledge into others

Mentors

Dr. Nhamo Mtetwa

Dr Mtetwa lectured in the Department of Cyber Security and Networks in the School of Computing, Engineering and Built Environment at Glasgow Caledonian University, United Kingdom teaching Database Technologies, Big data Technologies and Secure Coding. Nhamo has several years experience of hands-on development and deployment of end-to-end full stack applications in commercial environments.

He has a background in statistics, artificial intelligence, cyber security analytics and software development. He has applied data mining and machine learning to problems as diverse as spike detection in recordings from neurons, predicting pest infestation to automatic detection of vulnerabilities in software codebases. He is currently a Data Science Engineering Manager at Barclays Bank,United Kingdom

Participants will benefit immensely from Dr. Nhamo especially in the areas of Software security testing and the use of security by design approach in software development.

Dimas Surya

Dimas completed his MSc from Cardiff University, UK (with Indonesia Education scholarship) and has 10+ years experiences as IT Security Consultant.

Dimas currently focuses on Digital Forensic with hands on experienced in sets of Forensic Tools (FTK, EnCase, Cellebrite, Autopsy, X-Ways, etc). Dimas is trained ISO 17025 internal auditor, documentation and implementation, also industrial ISO 27001 and NIST Framework.

He is currently a Digital Forensic Investigator at Indonesia Deposit Insurance Corporation (Lembaga Penjamin Simpanan).
While at the bootcamp, participants will benefit from Dimas especially in the areas of Threat Modelling and Software Reverse Engineering.

Certification

About

CertNexus is a vendor-neutral certification body, providing emerging technology certifications and micro-credentials for Business, Data, Development, IT, and Security professionals. CertNexus’ mission is to assist in closing the emerging tech global skills gap while providing individuals with a path towards establishing rewarding careers in Cybersecurity, Data Science,Internet of Things, and Artificial Intelligence (AI)/Machine Learning.

CertNexus partners with highly knowledgeable and talented industry experts to ensure the integrity and quality of each exam, with all exams following a rigorous development process.

Laboratory

Hands-on activities to demonstrate concepts utilizing two universal languages Python and Java Script.
Developers who use alternate languages will be able apply the principles from the activities to any coding languages
You will have 180 Days Access to Virtual Lab.

Exam

Exam Code: CSC 210
Number of Items: 80 questions
Passing Score: 70%
Duration: 120 minutes
Exam Options: In person /virtual at Pearson VUE test centers
Item Formats: Multiple Choice/Multiple Response

Tuition