Course Catalog / Learning Path / Automation Engineer

Automation Engineer

Overview

The Automation Engineer learning path includes a variety of security courses that will vary depending on whether you are seeking core, advanced or elite paths. It is designed for those who design, program, simulate and test automated machinery and processes in order to complete exact tasks.

Course topics include:

Essential goals and controls needed to create secure software
Managing risk in the software development lifecycle
Cryptography, handling input and output
OWASP Top Ten

Ready to Demo? Questions about learning paths? Contact Us!

Learning Path Details

Number of Courses: 40

Total Duration: 9 hours

Total CPE Credits: 11

The Courses

View All Courses Download Learning Path Catalog Download Course Catalog

Course Catalog / Learning Path / Automation Engineer

Automation Engineer

Overview

Learning Path Details

The Courses

ENG 354 – Authorizing and Monitoring System Controls within the RMF (Coming Soon)

ENG 353 – Selecting, Implementing and Assessing Controls within the RMF (Coming Soon)

ENG 352 – Categorizing Systems and Information within the RMF (Coming Soon)

ENG 351 – Preparing the Risk Management Framework (New)

ENG 251 – Risk Management Foundations (New)

TST 275 – Testing for Use of a One-way Hash without a Salt (CWE-759)

TST 272 – Testing for Open Redirect (CWE-601)

TST 271 – Testing for Improper Restriction of Excessive Authentication Attempts (CWE-307)

TST 270 – Testing for Incorrect Calculation of Buffer Size (CWE-131)

TST 269 – Testing for Use of a Broken or Risky Cryptographic Algorithm (CWE-327)

TST 268 – Testing for Use of a Potentially Dangerous Function (CWE-676)

TST 267 – Testing for Incorrect Permission Assignment for Critical Resource (CWE-732)

TST 266 – Testing for Inclusion of Functionality from Untrusted Control Sphere (CWE-829)

TST 264 – Testing for Download of Code without Integrity Check (CWE-494)

TST 261 – Testing for Execution with Unnecessary Privileges (CWE-250)

TST 260 – Testing for Reliance on Untrusted Inputs in a Security Decision (CWE-807)

TST 259 – Testing for Unrestricted Upload of File with Dangerous Type (CWE-434)

TST 258 – Testing for Missing Encryption of Sensitive Data (CWE-311)

TST 257 – Testing for Use of Hard-Coded Credentials (CWE-798)

TST 255 – Testing for Missing Authentication for Critical Function (CWE-306)

TST 253 – Testing for Classic Buffer Overflow (CWE-120)

TST 252 – Testing for OS Command Injection (CWE-78)

ENG 125 – Essential Data Protection

ENG 124 – Essential Application Protection

ENG 123 – Essential Security Engineering Principles

ENG 120 – Essential Security Assessment & Authorization

ENG 119 – Essential Security Audit & Accountability

ENG 114 – Essential Risk Assessment

ENG 113 – Essential Secure Configuration Management

ENG 110 – Essential Account Management Securitiy

DES 231 – Applying OWASP 2017: Mitigating Insufficient Logging & Monitoring Vulnerabilities

DES 230 – Applying OWASP 2017: Mitigating Use of Components with Known Vulnerabilities

DES 229 – Applying OWASP 2017: Mitigating Insecure Deserialization

DES 228 – Applying OWASP 2017: Mitigating Cross Site Scripting (XSS)

DES 227 – Applying OWASP 2017: Mitigating Security Misconfiguration

DES 226 – Applying OWASP 2017: Mitigating Broken Access Control

DES 225 – Applying OWASP 2017: Mitigating XML External Entities

DES 224 – Applying OWASP 2017: Mitigating Sensitive Data Exposure

DES 223 – Applying OWASP 2017: Mitigating Broken Authentication

DES 222 – Applying OWASP 2017: Mitigating Injection