News & Events

Press Releases

Security Innovation releases specialized secure coding courses


Wilmington, MA – February 10, 2021, – Security Innovation, an authority in software security assessments and training, has expanded its CMD+CTRL blended training platform to include 7 new courses that empower development teams to mitigate language-specific threats. This brings the total count of the industry’s largest software security library to over 200 interactive courses.

“ The IT threatscape is ever-changing and hackers are continually finding new ways to exploit both emerging and legacy technologies,” said Lisa Parcella, VP of Product Management & Marketing. “ To keep customers armed with the latest attack & defend knowledge, we are committed to updating and releasing new courses every quarter” she continued.

While CMD+CTRL training focuses on all those that build, operate, and defend software, this quarter’s release is aimed at helping developers defend against new exploit techniques and protect data in a variety of languages and platforms. New courses include:

  • Java Application Server Hardening
  • Preventing Vulnerabilities in iOS Code in Swift
  • Preventing Vulnerabilities in Android Code in Java
  • Protecting C# from XML Injection
  • Protecting Java from Information Disclosure
  • Preventing Race Conditions in Java Code
  • Preventing Integer Overflows in Java Code

Additional program improvements include enhanced coding interactions that make it easier to distill complex topics and commit knowledge to memory and tighter alignment to the NICE Cybersecurity Workforce framework.

To provide more timely and relative guidance to developers, the company updated the following modules:

  • COD 255 Creating Secure Code – Web API Foundations
  • COD 302 Secure C Memory Management
  • COD 303 Common C Vulnerabilities and Attacks
  • COD 317 Protecting Data on iOS in Swift
  • COD 318 Protecting Data on Android Java
  • COD 322 Protecting C# from SQLi
  • COD 323 Using encryption with C#
  • COD 380 Preventing SQLi in Java
  • COD 381 Preventing Path Traversal Attacks in Java

Looking ahead
Security Innovation continually evaluates ways to improve breadth and depth of content, align courses to industry standards, and uncover more effective ways to reach learners. 2021 will feature in-context IDE coding challenges, hands-on vulnerability assessment learning labs, scenario-based interactions, digital badging, a robust cybersecurity workforce planning tool utilizing the NICE framework, and continued expansion into exploitation and defense techniques with a focus on the MITRE ATT&CK® Framework.

About CMD+CTRL Training
CMD+CTRL combines computer-based training (CBT) with hands-on cyber range to build skills that stick. Recognized 6x on the Gartner Magic Quadrant for security training, CMD+CTRL addresses the risk of today’s software stacks – flawed design, defenseless code, expanded attack surface, and misconfigured deployments. Role-based learning paths are tiered based on the desired competency, ensuring staff is appropriately skilled. For more information, please visit https://www.securityinnovation.com/training/

ABOUT SECURITY INNOVATION
Security Innovation is a pioneer in software security and literally wrote the book How to Break Software Security. Since 2002, organizations have relied on the company’s assessment and training solutions to secure software wherever it runs. Recognized 6x on the Gartner Magic Quadrant for computer-based security training, CMD+CTRL Training combines role-based courses with hands-on cyber ranges to build skills that stick. With over 3.5 million users, CMD+CTRL helps all software security stakeholders address the risk of today’s tech stacks – flawed design, defenseless code, expanded attack surface, and misconfigured deployments. For more information, visit https://www.securityinnovation.com/ or connect with us on LinkedIn or Twitter.

Maureen Robinson
Marketing Director
Security Innovation
+1.978.694.1008 x21
mrobinson@securityinnovation.com