COD 601: TeleTrusT Professional for Secure Software Engineering (T.P.S.S.E.) Certification
The TeleTrusT Professional for Secure Software Engineering (T.P.S.S.E.) certification covers the entire software development lifecycle. The certificate is designed for all who are involved in software development. This course gives insight into the design, development, and testing of secure software systems. Passing the exam is required to get the T.P.S.S.E. certification; however, there is no requirement to take the optional exam.
After completing this course, participants will be able to:
- Understand common software development mistakes and security defects and the impact they can have on application security.
- Understand common attacks and how to proactively prevent them from being successfully implemented against your systems.
- Improve the software development processes in your organization by exposing you to software security engineering practices that are done throughout the software development lifecycle.
- Integrate software security into the software development lifecycle to prevent common vulnerabilities and attacks by developing more robust and secure software.
- Feel more confident and prepared to take the T.P.S.S.E. certification exam.
- The View of the Attacker: Understand the motivation of hackers and their way of thinking, their skill level and resource situation.
- The View of the Customer: Understand what customers expect in terms of software security and be able to classify requirements accordingly.
- Methodologies for Secure Software Development: Understand different software development methodologies and the approaches related to these methodologies; be able to relate these to a company/project context.
- Requirements Engineering: Understand how to develop security requirements for technologies and applications.
- Threat modeling: Understanding threat modeling.
- Secure Design: Understand the principles for secure design; be able to apply them in the participant's context.
- Secure Coding: Understand vulnerabilities in coding; identify, avoid, and remediate them.
- Security Testing: Coordinate and perform security testing, understand the basic principles and how to interpret security testing results.
- Secure Deployment: Understand why and how secure deployment is important and it impacts development practice.
- Security Response: Understand and be able to implement a security response process, making sure that security issues in software installations are fixed and communicated responsibly.
- Security Metrics: Understand how to measure software security across the entire life cycle.
- Code and Resource Protection: Students will be able to protect their code against malicious behavior from developers or intruders; "code assurance" vs. "software assurance."