Course Catalog / Learning Path / Cloud Developer

Cloud Developer

Overview

The Cloud Developer learning path includes a variety of security courses that will vary depending on whether you are seeking core, advanced or elite paths. It is designed for those responsible for the design, development, and deployment of cloud applications and provides learners with a clear understanding of how to mitigate cloud computing risks.

Topics covered include:

“Big Data” and it introduces security challenges
Cloud computing characteristics, service and deployment models, and regulatory requirements
Platform-specific secure coding best practices including AWS and/or Azure

Core

Fundamentals of Application Security
Secure Software Concepts
Fundamentals of Secure Cloud Development
Threats to Scripts
Fundamentals of Threat Modeling

Advanced

IoT Specialization Series (6)
Creating Secure Oracle Database Applications
Creating Secure AWS Cloud Applications
Creating Secure Azure Applications
Creating Secure Code – Web API Foundations
Node.js Threats and Vulnerabilities
Fundamentals of Cryptography Series (4)
Secure Enterprise Infrastructure Series (4)
Applying OWASP 2017 Mitigations Series (10)

Elite

Fundamentals of Secure Architecture
Architecture Risk Analysis and Remediation
Creating Secure Application Architecture
Integrating the MS SDL into your SDLC Series (5)
How to Create Application Security Design Requirements
Attack Surface Analysis & Reduction
How to Perform a Security Code Review

Ready to Demo? Questions about learning paths? Contact Us!

Learning Path Details

Number of Courses: 40

Total Duration: 25 hours

Total CPE Credits: 30

The Courses

View All Courses Download Learning Path Catalog Download Course Catalog

ENG 312 – How to Perform a Security Code Review

60 Minutes

Elite

ENG 311 – Attack Surface Analysis & Reduction

Course Catalog / Learning Path / Cloud Developer

Cloud Developer

Overview

Learning Path Details

The Courses

ENG 312 – How to Perform a Security Code Review

ENG 311 – Attack Surface Analysis & Reduction

ENG 211 – How to Create Application Security Design Requirements

ENG 205 – Fundamentals of Threat Modeling

ENG 195 – Implementing the Microsoft SDL Threat Modeling Tool

ENG 194 – Implementing Microsoft SDL Line of Business

ENG 193 – Implementing the Microsoft SDL Optimization Model

ENG 192- Implementing the Agile Microsoft SDL

Creating Secure Application Architecture

Applying OWASP 2017: Mitigating Insufficient Logging & Monitoring Vulnerabilities

Applying OWASP 2017: Mitigating Use of Components with Known Vulnerabilities

Applying OWASP 2017: Mitigating Insecure Deserialization

Applying OWASP 2017: Mitigating Broken Access Control

Applying OWASP 2017: Mitigating XML External Entities

Applying OWASP 2017: Mitigating Sensitive Data Exposure

Applying OWASP 2017: Mitigating Broken Authentication

Applying OWASP 2017: Mitigating Injection

Application, Technical & Physical Access Controls

Securing Cloud Instances

Securing Operating System Access

Securing Network Access

Architecture Risk Analysis & Remediation

Message Integrity Cryptographic Functions

Role of Cryptography in Application Development

Cryptographic Components: Randomness, Algorithms, and Key Management

Cryptographic Suite Services: Encoding, Encrypting & Hashing

Fundamentals of Secure Architecture

Threats to Scripts

Node.js Threats & Vulnerabilities

Creating Secure Code – Web API Foundations

Creating Secure Azure Applications

Creating Secure AWS Cloud Applications

Creating Secure Oracle DB Applications

Insecure IoT Mobile Interface

Insecure IoT Communications

Insecure IoT Network Services

Insecure IoT Authentication & Authorization

Insecure IoT Web Interfaces

Fundamentals of Secure Cloud Development

Secure Software Concepts