EdX

Application Security for Developers (edX)

Offered by IBM,
Application Security for Developers (edX)

Learn to identify security vulnerabilities in applications and implement secure code practices to prevent events like data breaches and leaks. Become familiar with DevSecOps practices, and SAST for identifying security flaws.

Class Deals by MOOC List - Click here and see EdX's Active Discounts, Deals, and Promo Codes.

Vulnerabilities can occur at any stage of software development, making it critical for developers to write secure code and maintain a secured development environment and the platform it runs on. In this course, you will learn to identify security vulnerabilities in applications and implement secure code practices to prevent events like data breaches and leaks which can significantly impact an organization’s reputation and financial condition. This course provides a comprehensive overview of security best practices that developers should follow when developing applications. You’ll gain extensive knowledge on various practices, concepts, and processes for maintaining a secure environment, including DevSecOps practices that automate security integration across the software development lifecycle (SDLC), Static Application Security Testing (SAST) for identifying security flaws, Dynamic Analysis, and Dynamic Testing, and creating a Secure Development Environment, an ongoing process for securing a network, computing resources, and storage devices both on-premise and in the cloud. This course familiarizes you with the top Open Web Application Security Project (OWASP) application security risks such as broken access controls and SQL injections and teaches you how to prevent and mitigate these threats. This course includes multiple hands-on labs to develop and demonstrate your skills and knowledge for maintaining a secure development environment.
This course is part of the DevOps and Software Engineering Professional Certificate Professional Certificate.

What you'll learn

  • Demonstrate your knowledge of security testing procedures and describe how coding practices and other mitigation strategies help reduce risk.
  • Apply security concepts to various stages of the Software Development Lifecycle (SDLC).
  • Explain security by design, and develop applications using security by design principles.
  • Perform defensive coding that follow Open Web Application Security Project (OWASP) principles.

Syllabus

Module 1: Introduction to Security for Application Development
Security By Design
What is DevSecOps
Vulnerability Scanning and Threat Modeling
Threat Monitoring
Activity: Security Concepts and Terminology

Module 2: Security Testing and Mitigation Strategies
Intro to Security Testing and Mitigation Strategies
Static Analysis
Dynamic Analysis
Hands-on Lab: Using Static and Dynamic Analysis
Code Review
Vulnerability Analysis
Evaluating Vulnerability Analysis
Runtime Protection
Software Component Analysis
Hands-on Lab: Evaluate Software Component Analysis
Continuous Security Analysis

Module 3: OWASP
Intro to OWASP
OWASP Top 1-3
OWASP Top 4-6
OWASP Top 7-10
SQL Injections
Hands-on Lab: Understanding SQL Injections
Software and Data Integrity Failures: Cross Site Scripting
Hands-on Lab: Software and Data Integrity Failures: Cross Site Scripting
Storing Secrets Securely
Lab: Storing Secrets Securely
App ID

Module 4: Security Best Practices
Code Practices
Hands-on Lab: Code Practices
Dependencies
Hands-on Lab: Dependencies
Secure Development Environment
Hands-on Lab: Secure Development Environment

Module 5: Final Exam

Go to Class
MOOC List is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

Related Courses

CS50's Introduction to Computer Science (edX) EdX
HarvardX,Harvard University

CS50's Introduction to Computer Science (edX)

CS: Programming Computer Science

An introduction to the intellectual enterprises of computer science and the art of programming. This is CS50, Harvard University's introduction to the intellectual enterprises of computer science and the art of programming for majors and non-majors alike, with or without prior programming experience. An entry-level course taught by David J. Malan, CS50 teaches students how to think algorithmically and solve problems efficiently.

Self Paced
Self-Paced
Programming Python C
Details
Cybersecurity Risk Management (edX) EdX
Rochester Institute of Technology,RITx

Cybersecurity Risk Management (edX)

Security & Networking

Learn key principles of risk analysis, risk assessment and risk mitigation for information security using both qualitative and quantitative methodologies. Cybersecurity risk management guides a growing number of IT decisions. Cybersecurity risks continue to have critical impacts on overall IT risk modeling, assessment and mitigation.

Jan 8th 2024
5-12 Weeks
Security Risk Analysis Risk Management
Details
Python Basics for Data Science (edX) EdX
IBM

Python Basics for Data Science (edX)

Statistics & Data Analysis CS: Programming

This Python course provides a beginner-friendly introduction to Python for Data Science. Practice through lab exercises, and you'll be ready to create your first Python scripts on your own! Kickstart your learning of Python for data science, as well as programming in general with this introduction to Python course. This beginner-friendly Python course will quickly take you from zero to programming in Python in a matter of hours and give you a taste of how to start working with data in Python.

Self Paced
Self-Paced
Python Data Science Python Programming
Details
Cybersecurity Fundamentals (edX) EdX
Rochester Institute of Technology,RITx

Cybersecurity Fundamentals (edX)

Security & Networking

Learn cybersecurity fundamentals, including how to detect threats, protect systems and networks, and anticipate potential cyber attacks. In this introduction to the field of computing security, you will be given an extensive overview of the various branches of computing security. You will learn cybersecurity concepts, issues, and tools that are critical in solving problems in the computing security domain.

Jan 8th 2024
5-12 Weeks
Cryptography Security Networks
Details
Introduction to Cybersecurity (edX) EdX
University of Washington,UWashingtonX

Introduction to Cybersecurity (edX)

Security & Networking

An introduction to cybersecurity, ideal for learners who are curious about the world of Internet security and who want to be literate in the field. This course serves as an introduction to the exciting field of cybersecurity. As our daily lives become more and more dependent on Internet-based tools and services, and as those platforms accumulate more of our most sensitive data, the demand grows for experts in the field of cybersecurity.

Self Paced
Self-Paced
Security Cybersecurity Internet Security
Details
Finding your Cybersecurity Career Path (edX) EdX
University of Washington,UWashingtonX

Finding your Cybersecurity Career Path (edX)

Security & Networking

Learn about different career pathways in cybersecurity and complete a self-assessment project to better understand the right path for you. In this course, you will focus on the pathways to cybersecurity career success. You will determine your own incoming skills, talent, and deep interests to apply toward a meaningful and informed exploration of 32 Digital Pathways of Cybersecurity.

Self Paced
Self-Paced
Security Cybersecurity Problem Solving
Details
Cybersecurity Roles and Operating System Security (edX) EdX
IBM

Cybersecurity Roles and Operating System Security (edX)

Security & Networking

This course gives you the background needed to understand basic Cybersecurity around people. process and technology. No matter if you are new to the cybersecurity field or are looking to change careers, this course will help you understand the roles of system security professionals available within an organization from the chief information security officier (CISO) to security analysts.

Self Paced
Self-Paced
Security Operating Systems Windows
Details
Information Security - Introduction to Information Security (edX) EdX
New York University,NYUx

Information Security - Introduction to Information Security (edX)

Security & Networking

Learn the fundamentals of information security, including Security Design Principles, Threat Modeling and Security Policy. This is a self-paced course that provides an introduction to information security and cybersecurity. Students gain a broad overview of Information Security and Privacy (ISP) through high-level ISP concepts. We discuss both traditional design principles and principles that were developed to design secure systems.

Self Paced
Self-Paced
Security Information Security Cybersecurity
Details
Inclusive Energy Systems - Exploring Sustainable Energy for All (edX) EdX
Delft University of Technology,DelftX

Inclusive Energy Systems - Exploring Sustainable Energy for All (edX)

Engineering Sci: Energy & Earth Sciences

Explore the impact of social and technological changes on the future provision of clean and affordable energy services. Learn how to navigate towards an inclusive energy system for all world citizens, while satisfying greenhouse gas emission reduction targets. The provision of sustainable energy services for all world citizens is a daunting challenge. Issues of energy poverty and energy injustice are encountered in all societies.

No sessions available
5-12 Weeks
Energy Security Sustainable Energy
Details