Secure development: from hackers to developers
Secure development: from hackers to developers is a one-day in-depth course using the CTF-like platform OWASP Dojo, which helps developers gain a deeper understanding of how hackers break their code. The course focuses on best practices in secure development to raise awareness of development vulnerabilities which may result in potential security gaps.
Fee of the training course
€399 + VAT
8 academic hours
4 hours of classroom training + 4 hours of practical work
Location
KPMG Estonia training rooms, Ahtri 4, Tallinn
Participants
Maximum number of participants is up to 15 participants
Language
The training course and study materials are in English.
Course details
Secure development: from hackers to developers is a one-day in-depth course using the CTF-like platform OWASP Dojo, which helps developers gain a deeper understanding of how hackers break their code. The course focuses on best practices in secure development to raise awareness of development vulnerabilities which may result in potential security gaps.
Course materials will be distributed to participants. At the end of the course, participants will receive a course completion certificate signed by KPMG.
During the course, participants will need to use their own laptop (with VPN capability). Please contact us if you do not have a suitable computer for the course.
Required prior knowledge: understanding technical text in English to use the materials.
The training will take place in the training rooms of KPMG Baltics OÜ at the Forum business centre in Tallinn (Narva mnt 5).
Instructions (room number, floor, parking, etc.) will be provided after registration.
In the event of COVID-19 related restrictions, the course will take place online / in the form of a hybrid course or on other dates.
Day 1
- Introduction: Hacker mindset, threats to developers, setting up access to the lab environment
- Lecture: Secure development practices
- Dojo (study class): Setting up, accounts, URLs
- Practical exercises 1: Control module for secure code review
- Practical exercises 2: Black belt module for secure development study class
Trainers
Rajith Jayasekara
Rajith joined KPMG in 2020. Before that, Rajith worked as an information security engineer at TechCERT. He has been certified as Secure Software Development Lifecycle Professional (CSSLP), and he is also OCI Certified Associate.
Andris Männik
Senior Penetration Tester
Trainers’ certificates
NATO CSP
CISSP
A+
CISM
CCNA
GWAPT
CEH
GSEC
Learning outcomes
By completing the training:- you will gain insight into secure coding practices to mitigate common vulnerabilities
- you will learn to apply a security mindset in the software development lifecycle
- you will learn to use the checklist and resources for secure coding practices in software development
Turn threats into opportunities
Provide a safe and sustainable business environment for your company. We help build a resilient and reliable digital landscape, even in the face of changing threats.
KPMG Baltics OÜ
+372 626 8700cyber@kpmg.ee
Ahtri 4, 10151 Tallinn, Estonia
Contact us
${i18n('ask_more')}
Analysis of employee awareness
Analysis of employee awareness focuses on mapping the skills and increasing the competencies of the weakest link in cyber security: the users, the employees.
${i18n('ask_more')}
Threat assessment
Threat assessment is a tactical and technical service that allows a company to get a quick overview of external threats.
${i18n('ask_more')}
Maturity assessment
Maturity assessment helps plan IT investments and design further steps to mitigate vulnerabilities and ensure better security.