This course will help you understand how to avoid the many security-related errors found in software programs, the nature of many coding and configuration-related vulnerabilities, as well as prepare you for this domain of the CSSLP examination.
Most applications are built with focus solely on functionality and the need to support business operations, but you know that programs must also be built to be secure. In this course, CSSLP®: Secure Software Implementation and Programming, you'll learn about a important domain for the CSSLP candidate, teaching you the areas covered in this part of the examination. First, you'll learn the nature of common application vulnerabilities and the ways to mitigate and harden your systems to prevent security failures. Next, you'll discover the benefits of following coding standards and how documentation can help in the maintenance and operations of software. Finally, you'll explore how to identify software vulnerabilities and know how to perform testing of units of code. By the end of this course, you'll gain an understanding of the need to build integrated solutions and consistently high quality code modules.
Kevin Henry is a passionate mentor and educator in the fields of information security and audit. Mixing experience with knowledge, Kevin delivers effective training programs for companies and individuals worldwide. A frequent speaker at prestigious conferences, Kevin is known for a clear understandable manner of imparting practical information and explaining difficult topics.
Course Overview Hi everyone, my name is Kevin Henry, a security consultant and computer analyst programmer and a holder of the CSSLP certification, that is certified secure software lifecycle professional. I look forward to sharing knowledge and experiences with you. Welcome to my course on Secure Software Implementation and Programming, the fourth domain of the CSSLP certification. This course will help you apply secure software principles and practices to application programs and systems and assist you in preparing for the CSSLP exam. The content in this domain represents 16% of the CSSLP exam content. Most application programs are built with a focus solely on functionality and the need to support business operations. But we know that programs must also be built to be secure, to be resilient against attack, and continue to operate even under attack. Applications must be built to integrate into their operational environment and to interface with other systems and applications. In the previous courses we learned how to design a secure application and now you'll learn some of the ways to implement secure coding practices and avoid application based vulnerabilities. Some of the main topics that we will cover include how to avoid common code related vulnerabilities, the risks and benefits of using old code, how to perform effective testing of code modules. By the end of this course, you'll be prepared to progress into the next domain of the CSSLP, the area of secure software testing. I hope you'll join me in this journey to learn about the value, benefits, and features of secure software lifecycle and the role you can play in this exciting and rewarding field through this course at Pluralsight.