{"course":{"productid":36456,"modality":1,"active":true,"language":"fr","title":"Secure coding and security testing in Java for DevSecOps","productcode":"SCASTIJFDSO","vendorcode":"CY","vendorname":"Cydrill","fullproductcode":"CY-SCASTIJFDSO","courseware":{"has_ekit":false,"has_printkit":true,"language":""},"url":"https:\/\/portal.flane.ch\/course\/cydrill-scastijfdso","objective":"<ul>\n<li>Getting familiar with essential cyber security concepts<\/li><li>Understanding Web application security issues<\/li><li>Detailed analysis of the OWASP Top Ten elements<\/li><li>Putting Web application security in the context of Java<\/li><li>Going beyond the low hanging fruits<\/li><li>Managing vulnerabilities in third party components<\/li><li>Learn to deal with cloud infrastructure security<\/li><li>Understand cloud security specialties<\/li><li>Understanding security testing methodology and approaches<\/li><li>Getting familiar with security testing techniques and tools<\/li><\/ul>","essentials":"<p>DevSecOps, General Java and Web development, testing and QA<\/p>","audience":"<p>Java architects, developers and testers<\/p>","contents":"<ul>\n<li>Cyber security basics<\/li><li>The OWASP Top Ten 2021<\/li><li>Cloud security<\/li><li>Security testing<\/li><li>Wrap up<\/li><\/ul>","summary":"<p>The course provides an in-depth exploration of security concerns and best practices tailored specifically for DevOps engineers working on Java software on the AWS cloud platform. Starting off from the foundations of cybersecurity, you will understand the consequences of insecure code by examining threats through the lens of the CIA triad.<\/p>\n<p>In the main part of the material, you will go through the various security issues outlined in the OWASP Top Ten with a focus on DevSecOps issues &ndash; identity management in microservice and cloud environments, secure AWS configuration, securing CI \/ CD build processes, secrets management, and logging and monitoring. Finally, you&rsquo;ll explore cloud security with a focus on security automation and tooling in AWS, the security of containers and container orchestration (Docker, Kubernetes), microservices, and Infrastructure as Code tools (CloudFormation, Terraform), and security testing tools relevant for DevSecOps.<\/p>\n<p>These modules go beyond just theory. Not only do they show vulnerabilities, their consequences, and corresponding best practices, but &ndash; through hands-on labs and real-world case studies &ndash; they offer practical experience in identifying, exploiting, and mitigating these security risks.<\/p>\n<p>So that you are prepared for the forces of the dark side.<\/p>\n<p>So that nothing unexpected happens.<\/p>\n<p>Nothing.<\/p>","objective_plain":"- Getting familiar with essential cyber security concepts\n- Understanding Web application security issues\n- Detailed analysis of the OWASP Top Ten elements\n- Putting Web application security in the context of Java\n- Going beyond the low hanging fruits\n- Managing vulnerabilities in third party components\n- Learn to deal with cloud infrastructure security\n- Understand cloud security specialties\n- Understanding security testing methodology and approaches\n- Getting familiar with security testing techniques and tools","essentials_plain":"DevSecOps, General Java and Web development, testing and QA","audience_plain":"Java architects, developers and testers","contents_plain":"- Cyber security basics\n- The OWASP Top Ten 2021\n- Cloud security\n- Security testing\n- Wrap up","summary_plain":"The course provides an in-depth exploration of security concerns and best practices tailored specifically for DevOps engineers working on Java software on the AWS cloud platform. Starting off from the foundations of cybersecurity, you will understand the consequences of insecure code by examining threats through the lens of the CIA triad.\n\nIn the main part of the material, you will go through the various security issues outlined in the OWASP Top Ten with a focus on DevSecOps issues \u2013 identity management in microservice and cloud environments, secure AWS configuration, securing CI \/ CD build processes, secrets management, and logging and monitoring. Finally, you\u2019ll explore cloud security with a focus on security automation and tooling in AWS, the security of containers and container orchestration (Docker, Kubernetes), microservices, and Infrastructure as Code tools (CloudFormation, Terraform), and security testing tools relevant for DevSecOps.\n\nThese modules go beyond just theory. Not only do they show vulnerabilities, their consequences, and corresponding best practices, but \u2013 through hands-on labs and real-world case studies \u2013 they offer practical experience in identifying, exploiting, and mitigating these security risks.\n\nSo that you are prepared for the forces of the dark side.\n\nSo that nothing unexpected happens.\n\nNothing.","version":"1.0","duration":{"unit":"d","value":3,"formatted":"3 jours"},"pricelist":{"List Price":{"DE":{"country":"DE","currency":"EUR","taxrate":19,"price":2250},"SI":{"country":"SI","currency":"EUR","taxrate":20,"price":2250},"AT":{"country":"AT","currency":"EUR","taxrate":20,"price":2250},"SE":{"country":"SE","currency":"EUR","taxrate":25,"price":2250},"CH":{"country":"CH","currency":"CHF","taxrate":8.1,"price":2250}}},"lastchanged":"2025-10-29T09:02:59+01:00","parenturl":"https:\/\/portal.flane.ch\/swisscom\/fr\/json-courses","nexturl_course_schedule":"https:\/\/portal.flane.ch\/swisscom\/fr\/json-course-schedule\/36456","source_lang":"fr","source":"https:\/\/portal.flane.ch\/swisscom\/fr\/json-course\/cydrill-scastijfdso"}}