fbpx

Certified Application Security Engineer (CASE).NET E-learning and Exam Voucher

Tanfolyam kódja:
MFCASENET
Tanfolyam hossza:
24 tanóra, tetszőleges időpontban
Ára:

209 500 Ft + Áfa

Rövid ismertetés:

CASE .NET goes beyond just the guidelines on secure coding practices but include secure requirement gathering, robust application design and handling security issues in post development phases of application development. This makes CASE one of the most comprehensive certifications for secure software development in the market today. It’s desired by software application engineers, analysts, testers globally and respected by hiring authorities. The hands-on training program encompasses security activities involved in all phases of the Secure Software Development Lifecycle (SDLC): planning, creating, testing and deploying an application.

Előfeltételek:

English knowledge and minimum 2 years' .NET developer experience

Kiknek ajánljuk?

Target audience:

.NET Developers and individuals who want to become application security engineers/analysts/testers. Individuals involved in the role of developing testing, managing or protecting .NET based applications.

Képzés nyelve:
Angol
Részletes leírás:

EC Council is sourcing E-Learning training and certification partners globally for the iLearn Division. iLearn is EC-Council’s Official Training program, where a learner learns through instructor-led self-paced video-based training methodology. Self-paced in that a certification candidate can set its own learning pace by pausing the lectures and returning to their studies as their schedule permits.

THE ADVANTAGE OF iLEARN IS THAT IT HAS:

  • Step by step guide from EC Council’s Master trainers who teach virtual lessons through HD video
  • Rich content equivalent to our classroom training
  • Access iLabs, the virtual simulated lab with more than 140 lab exercises and 2200 hacking tools inbuilt in the system
  • A convenient 365-days access our training content on the web
  • A cost-effective solution to training without additional time investment.


THE iLEARN PACKAGE INCLUDES:

  • One Year Access to the E-courseware
  • Six months access to EC-Council's official Online lab environment (iLabs)
  • EC-Council’s Certification Exam Voucher
  • One year access to EC-Council's expert instructor-led training modules with streaming video presentations for an all-inclusive training program that provides the benefits of classroom training at your own pace

iLearn online training is a distance learning program designed for those who cannot attend a live course. The program is for the people who have a very busy schedule and want to learn at their own pace through self-study.

    


KEY OUTCOMES:

  • Ensure that application security is no longer an afterthought but a foremost one.
  • It lays the foundation required by all application developers and development organizations, to produce secure applications with greater stability and fewer security risks to the consumer.
  • Ensure that organizations mitigate the risk of losing millions due to security compromises that may arise with every step of application development process.
  • Helps individuals develop the habit of giving importance to security sacrosanct of their job  role in the SDLC, therefore opening security as the main domain for testers, developers, network administrator etc.

  

COURSE OUTLINE:

  1. UNDERSTANDING APPLICATION SECURITY, THREATS, AND ATTACKS

  2. SECURITY REQUIREMENTS GATHERING

  3. SECURE APPLICATION DESIGN AND ARCHITECTURE

  4. SECURE CODING PRACTICES FOR INPUT VALIDATION

  5. SECURE CODING PRACTICES FOR AUTHENTICATION AND AUTHORIZATION

  6. SECURE CODING PRACTICES FOR CRYPTOGRAPHY

  7. SECURE CODING PRACTICES FOR SESSION MANAGEMENT

  8. SECURE CODING PRACTICES FOR ERROR HANDLING

  9. STATIC AND DYNAMIC APPLICATION SECURITY TESTING (SAST & DAST)

  10. SECURE DEPLOYMENT AND MAINTENANCE

Kapcsolódó vizsgák:
Exam Title: Certified Application Security Engineer (.NET)
Exam Code: 312-95
Number of Questions: 50
Duration: 2 hours
Availability: ECC Exam Portal
Test Format: Multiple Choice

 

 

The EC-Council group is made up of several entities that all help serve the same goal, which is to create a better, safer cyber-world through awareness and education.


Vissza


Hasonló tanfolyamok listája:

A tanfolyamon a hallgatók elsajátíthatják a számítógépes hálózatok tervezését és üzemeltetését biztonsági szempontból.

A tanfolyamon a hallgatók megismerkednek az egyik legnépszerűbb fejlesztőeszközzel, a Microsoft Visual Studio-val és a C# programozási nyelvvel.

 

A tanfolyamon a hallgatók mélyebb ismereteket szereznek a C# programozási nyelvről, speciális technikákat és fontos tervezési mintákat sajátítanak el.

A tanfolyam során bemutatjuk a C# programozási nyelvek újabb verzióinak újdonságait – a létrejöttük mögött meghúzódó indokoktól kezdve a gyakori és kevésbé gyakori felhasználási esetekig. Röviden bemutatjuk a .NET Compiler Platform (korábban Roslyn) felhasználási lehetőségeit és azt, hogyan lehet ennek segítségével testre szabni a fejlesztői élményt a mindennapokban. A C# 6 verziótól kezdve lépésenként megnézzük az aktuális verzióig a legfontosabb újításokat és betekintést nyújtunk a készülő verziók újdonságaiba is.

The CASE Java program is designed to be a hands-on, comprehensive application security training course that will help software professionals create secure applications. It trains software developers on the critical security skills and knowledge required throughout a typical software development lifecycle (SDLC), focusing on the importance of the implementation of secure methodologies and practices required in today’s insecure operating environment.

The Threat Intelligence training program was based on a rigorous Job Task Analysis (JTA) of the job roles involved in the field of threat intelligence. This program differentiates threat intelligence professionals from other information security professionals. It is a highly interactive, comprehensive, standards-based, intensive 3-day training program that teaches information security professionals to build professional threat intelligence.

The CCISO certification is an industry-leading program that recognises the real-world experience necessary to succeed at the highest executive levels of information security. Bringing together all the components required for C-Level positions, the CCISO program combines audit management, governance, IS controls, human capital management, strategic program development and the financial expertise vital for leading a highly successful IS program. The CCISO Training Program can be the key to a successful transition to the highest ranks of information security management.

CEH is the world’s most advanced certified ethical hacking course that covers 20 of the most current security domains any individual will ever want to know when they are planning to beef-up the information security posture of their organisation.

This accredited course provides the advanced hacking tools and techniques used by hackers and information security professionals. 

The ECIH program is designed to provide the fundamental skills to handle and respond to the computer security incidents in an information system. The course addresses various underlying principles and techniques for detecting and responding to current and emerging computer security threats. The comprehensive training program will make students proficient in handling as well as responding to various security incidents, such as network security incidents, malicious code incidents and insider attack threats.

CND is the world’s most advanced network defense course that covers 14 of the most current network security domains any individuals will ever want to know when they are planning to protect, detect and respond to network attacks. The course contains hands-on labs based on major network security tools and aims to provide network administrators real world expertise on current network security technologies and operations. The study-kit provides you with over 10 GB of network security best practices, assessments and protection tools.

The CSCU training program aims at equipping students with the necessary knowledge and skills to protect their information assets. This course covers the fundamentals of various computer and network security threats, such as identity theft, credit card fraud, phishing, virus and backdoors, email hoaxes, loss of confidential information, hacking attacks and social engineering.

CHFI v9 constitutes a detailed methodological approach to computer forensic and evidence analysis. It provides the necessary skill-set for the identification of an intruder’s footprints and gathering the necessary evidence for their prosecution. All major tools and theories used by the cyber forensic industry are covered in the curriculum. The certification can fortify the applied knowledge level of law enforcement personnel, system administrators, security officers, defense and military personnel, legal professionals, bankers, computer and network security professionals and anyone who is concerned about the integrity of the network and digital investigations.

The EDRP v3 course identifies vulnerabilities and takes appropriate countermeasures to prevent and mitigate failure risks for an orginization. It also provides the networking professional with a foundation in disaster recovery course principles, including preparation of a disaster recovery plan, assessment of risks in the enterprise, development of policies and procedures, an understanding of the roles and relationships of various members of organisation, implementation of a plan and recovering from a disaster.

ECSA is a globally respected penetration testing program that covers the testing of modern infrastrucutres, operating systems and application environments while teaching students how to document and prepare a professional penetration testing report. This program takes the tools and techniques covered in CEH to the next level by utilizing EC-Council’s published penetration testing methodology.

The program offers a seamless learning progress, continuing where the CEH program left off. The new ECSAv10 includes updated curricula and an industry recognised comprehensive step-by- step penetration testing methodology. This allows a learner to elevate their ability in applying new skills learned through intensive practical labs and challenges.

A tanfolyamon a hallgatók elsajátíthatják a modern webportálok és SPA alkalmazások fejlesztésének alapjait ASP.NET környezetben.

IT biztonság profiknak, a támadók felől megközelítve: milyen eszközökkel dolgoznak és hogyan lehet ellenük védekezni. Az egyes támadás típusok gyakorlati bemutatása mellett az azokat csökkentő ill. elhárító védekezési módszerekkel és a behatolásérzékeléssel is részletesen foglalkozunk.