Training Course Updates

Staying Ahead of the Threatscape

With 200+ courses, Security Innovation has the most expansive and current software security curriculum in the industry. And just like the threat landscape, it’s constantly changing. That’s why we regularly release new and updated courses throughout the year.

Your voice matters

In addition to emerging trends, customer feedback largely drives course direction. If you would like a more detailed look at our roadmap, please contact us.

Planned Updates at a Glance
While slight changes might be made based on emerging threats and customer demand, our planned future releases include:

Learning Labs MiTRE ATT&CK Framework
Challenge-Based Learning Network-as-Code
Skills Assessment OWASP API
Digital Badges/Certificates OWASP Cloud
Journey Mapping Cyber Exploitation & Defense
Progress Tracking Ethical Hacking
Learning Channels Internet-of-Things

Released Course Updates

October 2021 Release

Our Q4 update consist of new content focused on vulnerability identification techniques, secure Infrastructure-as-Code (IaC) deployments, web API and Cloud Service best practices, and cloud penetration testing. New learning experiences build in-demand skills while establishing a real-world connection that accounts for exposure to cyber-attacks, disruption, interruption, and many other impacts.

Unify daily experiences and intellect with learning labs while driving the transfer of training after the formal learning intervention

Secure Infrastructure as Code (IaC) deployments by leveraging security features and capabilities of Terraform

Identify unique vulnerabilities within authentic enterprise applications using various techniques

Learn API Security based on OWASP guidelines to understand and mitigate risks of application programming interfaces (APIs)

Follow CSA Top 11 Threats to Cloud Computing guidelines regarding what secure practices to follow when planning and establishing cloud environments

Learn Pen Testing fundamentals to protect and defend cloud services from common vulnerabilities and misconfigurations for the top 3 cloud service providers

NEW LABS

NEW COURSES

View Course Catalog

July 2021 Release

Our Q3 update includes new and updated courses focused on Cloud Best Practices for Enterprise organizations, as well as attack and test techniques that teams need to safeguard their software and infrastructure – all while using the Google Cloud Platform.

New Courses! Google Cloud Platform

COD 252 – Securing Google Platform Applications & Data
This course provides the knowledge and skills to implement and leverage GCP security features, manage secrets, and protect applications and data against common threats.

DSO 256 – DevSecOps in the Google Cloud Platform
This course focuses on centralized monitoring, operations, and logging. Learn to store, view, search, analyze, and alert on log data and events. Gain visibility into the performance, availability, and health of your applications and infrastructure to ensure reliable operation.

Updated Courses! Secure Enterprise Infrastructure Series

The Security Innovation course development team is bringing additional interactive elements to many of our existing training modules in order to increase engagement and to provide a better experience for learners. Let us know what you think of the improvements!

DES 214 Securing Infrastructure Architecture
DES 215 Defending Infrastructure
DES 216 Protecting Cloud Infrastructure
DES 218 Protecting Microservices, Containers, and Orchestration

View Course Catalog

April 2021 Release

Released Courses

Our release this quarter focuses on two areas:

Our Q2 update entails a lot of new and updated content that focuses on attack and test techniques teams need to safeguard their software and infrastructure.
Addition of MiTRE ATT&CK Framework coverage to understand attack techniques on software systems and infrastructure

“Shift Right” to examine exposure points from an external perspective and defend applications, servers, systems, networks, and data from malicious attacks

Consolidated related OWASP and CWE content based on the evolvement of new risks, weaknesses, vulnerabilities, and exploit techniques to eliminate redundancy

Identify and eliminate vulnerabilities during development to keep pace as development teams take on more test functions with a new genre of courses; Software Development Testing (SDT)

January 2021 Release

Released Courses

Our release this quarter focuses on two areas:

Enhanced coding interactions: make it easier to distill complex topics and commit knowledge to memory
Emerging Technologies: learn object-oriented and scripting languages that are quickly becoming industry mainstays
DevSecOps Practices: master tools and methods that calibrate agility with security
Secure Coding Interactivity: challenge developers to find and fix vulnerabilities in code based on learned knowledge

COD 287 – Java Application Server Hardening COD 386 Preventing Integer Overflows in Java Code
COD 315 Preventing Vulnerabilities in iOS Code in Swift COD 255 Creating Secure Code – Web API Foundations
COD 384 Protecting Java from Information Disclosure COD 302 Secure C Memory Management
COD 385 Preventing Race Conditions in Java Code COD 322 Protecting C# from SQLi
COD 319 Preventing Vulnerabilities in Android Code in Java COD 323 Using encryption with C#
COD 324 Protecting C# from XML Injection

View Course Catalog

October 2020 Release

Released Courses

Our release this quarter focuses on two areas:

Information Security Compliance: maintain compliance with evolving frameworks and regulatory requirements while reducing organizational exposure
Emerging Technologies: learn object-oriented and scripting languages that are quickly becoming industry mainstays
DevSecOps Practices: master tools and methods that calibrate agility with security
Secure Coding Interactivity: challenge developers to find and fix vulnerabilities in code based on learned knowledge.

DES 206 – Meeting Cloud Governance and Compliance Requirements COD 285 – Develop Secure Angular Applications
DES 312 – Protecting Cardholder Data COD 286 – Creating Secure React User Interfaces
ENG 212 – Implementing Secure Software Operations COD 366 – Create Secure Kotlin Applications
TST 206 – ASVS Requirements for Developers DSO 306 – Implementing Infrastructure as Code
DSO 307 – Secure Secrets Management COD 206 – Creating Secure C++ Code
COD 201 – Secure C Encrypted Network Communications COD 307 – Protecting Data in C++
COD 202 – Secure C Run-Time Protection

View Course Catalog

July 2020 Release

Released Courses

Our release this quarter focuses on two areas:

DevOps: gaining specialized skills to master tools and optimize a DevOps workstream
Emerging Challenges: understand how to secure open-source software and privacy data

DSO 206 Identifying Threats to Containers and Data in a DevSecOps Framework DSO 303 Automating Security Updates
DSO 211 Securing the Open Source Software Supply Chain DSO 304 Securing API Gateways in a DevSecOps Framework
DSO 301 Orchestrating Secure System and Service Configuration DSO 305 Automating CI/CD Pipeline Compliance
DSO 302 Automated Security Testing ENG 151 Fundamentals of Privacy Protection

View Course Catalog