Course Catalog / NICE Specialty Areas / Risk Management (RSK)

Risk Management (RSK)

Oversees, evaluates, and supports the documentation, validation, assessment, and authorization processes necessary to assure that existing and new information technology (IT) systems meet the organization’s cybersecurity and risk requirements. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives.

Course Catalog / NICE Specialty Areas / Risk Management (RSK)

Risk Management (RSK)

The Courses

LAB 208 – Defending C# Applications Against XPath Injection (NEW)

LAB 207 – Defending Node.js Applications Against XPath Injection (NEW)

LAB 206 – Defending Python Applications Against XPath Injection (NEW)

LAB 205 – Defending Java Applications Against XPath Injection (NEW)

LAB 204 – Defending Node.js Applications Against Canonicalization (NEW)

LAB 203 – Defending C# Applications Against Canonicalization (NEW)

LAB 202 – Defending Python Applications Against Canonicalization (NEW)

LAB 201 – Defending Java Applications Against Canonicalization (NEW)

LAB 294 – Defending C# Applications Against Integer Overflow

LAB 293 – Defending Java Applications Against Integer Overflow

LAB 292 – Defending C# Applications Against Path Traversal

LAB 291 – Defending Node.js Applications Against Path Traversal

LAB 290 – Defending Python Applications Against Path Traversal

LAB 289 – Defending Java Applications Against Path Traversal

LAB 288 – Defending C# Applications Against Null Pointer Dereference

LAB 287 – Defending Java Applications Against Null Pointer Dereference

LAB 280 – Defending Python Applications Against Dangerous File Upload

LAB 275 – Defending Java Applications Against Command Injection

LAB 277 – Defending Node.js Applications Against Command Injection

LAB 276 – Defending Python Applications Against Command Injection

LAB 278 – Defending C# Applications Against Command Injection

LAB 281 – Defending Node.js Applications Against Dangerous File Upload

LAB 282 – Defending C# Applications Against Dangerous File Upload

LAB 283 – Defending Java Applications Against RegEx DoS

LAB 284 – Defending Python Applications Against RegEx DoS

LAB 285 – Defending Node.js Applications Against RegEx DoS

LAB 286 – Defending C# Applications Against RegEx DoS

LAB 137 – Identifying Improper Authorization

LAB 138 – Identifying Authorization Bypass Through User-Controlled Key

LAB 139 – Identifying Use of a Key Past its Expiration Date

CYB 310 – Using Cyber Supply Chain Risk Management (C-SCRM) to Mitigate Threats to IT/OT

LAB 279 – Defending Java Applications Against Dangerous File Upload

LAB 211 – Defending Java Applications Against Credentials in Code Medium

LAB 212 – Defending Python Applications Against Credentials in Code Medium

LAB 213 – Defending Node.js Applications Against Credentials in Code Medium

LAB 214 – Defending C# Applications Against Credentials in Code Medium

LAB 215 – Defending Java Applications Against Business Logic Error for Input Validation

LAB 216 – Defending Python Applications Against Business Logic Error for Input Validation

LAB 217 – Defending Node.js Applications Against Business Logic Error for Input Validation

LAB 218 – Defending C# Applications Against Business Logic Error for Input Validation

LAB 224 – Defending Java Applications Against Forceful Browsing

LAB 225 – Defending Python Applications Against Forceful Browsing

LAB 226 – Defending Node.js Applications Against Forceful Browsing

LAB 227 – Defending C# Applications Against Forceful Browsing

LAB 136 – Identifying Improper Neutralization of Script in Attributes in a Web Page

LAB 135 – Identifying URL Redirection to Untrusted Site

LAB 134 – Identifying Plaintext Storage of a Password

LAB 133 – Identifying Exposure of Sensitive Information Through Environmental Variables

LAB 274 – Defending C# Applications Against SSRF

LAB 273 – Defending Node.js Applications Against SSRF

LAB 272 – Defending Python Applications Against SSRF

LAB 271 – Defending Java Applications Against SSRF

LAB 270 – Defending C# Applications Against Deserialization of Untrusted Data

LAB 269 – Defending Node.js Applications Against Deserialization of Untrusted Data

LAB 268 – Defending Python Applications Against Deserialization of Untrusted Data

LAB 267 – Defending Java Applications Against Deserialization of Untrusted Data

LAB 266 – Defending C# Applications Against Sensitive Information in Log Files

LAB 265 – Defending Node.js Applications Against Sensitive Information in Log Files

LAB 264 – Defending Python Applications Against Sensitive Information in Log Files

LAB 263 – Defending Java Applications Against Sensitive Information in Log Files

LAB 132 – Identifying Exposed Services

LAB 131 – Identifying Improper Restriction of XML External Entity Reference

LAB 262 – Defending Node.js Applications Against Sensitive Information in Error Messages

LAB 261 – Defending Python Applications Against Sensitive Information in Error Messages

LAB 260 – Defending C# Applications Against Sensitive Information in Error Messages

LAB 236 – Defending Java Applications Against Sensitive Information in Error Messages

LAB 130 – Identifying Generation of Predictable Numbers or Identifiers

LAB 129 – Identifying Error Message Containing Sensitive Information

LAB 128 – Identifying Unverified Password Change

LAB 127 – Identifying Security Logging and Monitoring Failures

LAB 253 – Defending Python Applications Against Weak PRNG

LAB 247 – Defending Node.js Applications Against Weak PRNG

LAB 229 – Defending Java Applications Against Weak PRNG

LAB 239 – Defending C# Applications Against Weak PRNG

LAB 252 – Defending Python Applications Against Weak AES ECB Mode Encryption

LAB 246 – Defending Node.js Applications Against Weak AES ECB Mode Encryption

LAB 228 – Defending Java Applications Against Weak AES ECB Mode Encryption