Staying Ahead of the Threatscape
With 200+ courses, Security Innovation has the most expansive and current software security curriculum in the industry. And just like the threat landscape, it’s constantly changing. That’s why we regularly release new and updated courses throughout the year.
Your voice matters
In addition to emerging trends, customer feedback largely drives course direction. If you would like a more detailed look at our roadmap, please contact us.
Planned Updates at a Glance
While slight changes might be made based on emerging threats and customer demand, our planned future releases include:
 |
Learning Labs | |
MiTRE ATT&CK Framework |
|
Challenge-Based Learning | |
Network-as-Code |
|
Skills Assessment | |
OWASP API |
|
Digital Badges/Certificates | |
OWASP Cloud |
|
Journey Mapping | |
Cyber Exploitation & Defense |
|
Progress Tracking | |
Ethical Hacking |
|
Learning Channels | |
Internet-of-Things |
Released Course Updates
October 2021 Release
Our Q4 update consist of new content focused on vulnerability identification techniques, secure Infrastructure-as-Code (IaC) deployments, web API and Cloud Service best practices, and cloud penetration testing. New learning experiences build in-demand skills while establishing a real-world connection that accounts for exposure to cyber-attacks, disruption, interruption, and many other impacts.
Unify daily experiences and intellect with learning labs while driving the transfer of training after the formal learning intervention
Secure Infrastructure as Code (IaC) deployments by leveraging security features and capabilities of Terraform
Identify unique vulnerabilities within authentic enterprise applications using various techniques
Learn API Security based on OWASP guidelines to understand and mitigate risks of application programming interfaces (APIs)
Follow CSA Top 11 Threats to Cloud Computing guidelines regarding what secure practices to follow when planning and establishing cloud environments
Learn Pen Testing fundamentals to protect and defend cloud services from common vulnerabilities and misconfigurations for the top 3 cloud service providers
NEW LABS
NEW COURSES
July 2021 Release
Our Q3 update includes new and updated courses focused on Cloud Best Practices for Enterprise organizations, as well as attack and test techniques that teams need to safeguard their software and infrastructure – all while using the Google Cloud Platform.
New Courses! Google Cloud Platform
COD 252 – Securing Google Platform Applications & Data
This course provides the knowledge and skills to implement and leverage GCP security features, manage secrets, and protect applications and data against common threats.
DSO 256 – DevSecOps in the Google Cloud Platform
This course focuses on centralized monitoring, operations, and logging. Learn to store, view, search, analyze, and alert on log data and events. Gain visibility into the performance, availability, and health of your applications and infrastructure to ensure reliable operation.
Updated Courses! Secure Enterprise Infrastructure Series
The Security Innovation course development team is bringing additional interactive elements to many of our existing training modules in order to increase engagement and to provide a better experience for learners. Let us know what you think of the improvements!
• DES 214 Securing Infrastructure Architecture
• DES 215 Defending Infrastructure
• DES 216 Protecting Cloud Infrastructure
• DES 218 Protecting Microservices, Containers, and Orchestration
April 2021 Release
Released Courses
Our release this quarter focuses on two areas:
Our Q2 update entails a lot of new and updated content that focuses on attack and test techniques teams need to safeguard their software and infrastructure.
Addition of MiTRE ATT&CK Framework coverage to understand attack techniques on software systems and infrastructure
“Shift Right” to examine exposure points from an external perspective and defend applications, servers, systems, networks, and data from malicious attacks
Consolidated related OWASP and CWE content based on the evolvement of new risks, weaknesses, vulnerabilities, and exploit techniques to eliminate redundancy
Identify and eliminate vulnerabilities during development to keep pace as development teams take on more test functions with a new genre of courses; Software Development Testing (SDT)
January 2021 Release
Released Courses
Our release this quarter focuses on two areas:
Enhanced coding interactions: make it easier to distill complex topics and commit knowledge to memory
Emerging Technologies: learn object-oriented and scripting languages that are quickly becoming industry mainstays
DevSecOps Practices: master tools and methods that calibrate agility with security
Secure Coding Interactivity: challenge developers to find and fix vulnerabilities in code based on learned knowledge
| COD 287 – Java Application Server Hardening | COD 386 Preventing Integer Overflows in Java Code |
| COD 315 Preventing Vulnerabilities in iOS Code in Swift | COD 255 Creating Secure Code – Web API Foundations |
| COD 384 Protecting Java from Information Disclosure | COD 302 Secure C Memory Management |
| COD 385 Preventing Race Conditions in Java Code | COD 322 Protecting C# from SQLi |
| COD 319 Preventing Vulnerabilities in Android Code in Java | COD 323 Using encryption with C# |
| COD 324 Protecting C# from XML Injection |
October 2020 Release
Released Courses
Our release this quarter focuses on two areas:
Information Security Compliance: maintain compliance with evolving frameworks and regulatory requirements while reducing organizational exposure
Emerging Technologies: learn object-oriented and scripting languages that are quickly becoming industry mainstays
DevSecOps Practices: master tools and methods that calibrate agility with security
Secure Coding Interactivity: challenge developers to find and fix vulnerabilities in code based on learned knowledge.
| DES 206 – Meeting Cloud Governance and Compliance Requirements | COD 285 – Develop Secure Angular Applications |
| DES 312 – Protecting Cardholder Data | COD 286 – Creating Secure React User Interfaces |
| ENG 212 – Implementing Secure Software Operations | COD 366 – Create Secure Kotlin Applications |
| TST 206 – ASVS Requirements for Developers | DSO 306 – Implementing Infrastructure as Code |
| DSO 307 – Secure Secrets Management | COD 206 – Creating Secure C++ Code |
| COD 201 – Secure C Encrypted Network Communications | COD 307 – Protecting Data in C++ |
| COD 202 – Secure C Run-Time Protection | |
July 2020 Release
Released Courses
Our release this quarter focuses on two areas:
DevOps: gaining specialized skills to master tools and optimize a DevOps workstream
Emerging Challenges: understand how to secure open-source software and privacy data
| DSO 206 Identifying Threats to Containers and Data in a DevSecOps Framework | DSO 303 Automating Security Updates |
| DSO 211 Securing the Open Source Software Supply Chain | DSO 304 Securing API Gateways in a DevSecOps Framework |
| DSO 301 Orchestrating Secure System and Service Configuration | DSO 305 Automating CI/CD Pipeline Compliance |
| DSO 302 Automated Security Testing | ENG 151 Fundamentals of Privacy Protection |