ENG 211: How to Create Application Security Design Requirements
Security is an important component of an application’s quality. To preserve the confidentiality, integrity, and availability of application data, software applications must be engineered with security in mind beginning with the design phase. Without defined security requirements, design choices will be made without security guidance and security testing cannot be effective. This course provides technical and non-technical personnel with the tools to understand, create, and articulate security requirements as part of a software requirement documents.
Upon completion of this course, participants will be able to:
- Apply the application security maturity (ASM) model to your development process
- Understand the security engineering process
- Describe the key security engineering activities you can use to integrate security in your development lifecycle
- Determine software security objectives, apply security design guidelines, and create threat models that identify threats, attacks, vulnerabilities, and countermeasures
This course can be customized for Instructor-Led training. Course contents and duration may vary. Contact us for details.