Building an Application Security Program

Focused View

Tim Chase

1:34:10

27 View

01 - Introduction

01 - Introduction to the building an AppSec course.mp4

00:55

02 - What you should know.mp4

00:20

02 - 1. AppSec Basics

01 - Introduction to application security.mp4

05:08

02 - Understanding the development process.mp4

04:49

03 - Where does AppSec fit in.mp4

05:39

04 - Making the business case.mp4

05:43

05 - Where to start.mp4

04:00

03 - 2. Testing

01 - Understanding AppSec testing.mp4

05:46

02 - Threat modeling.mp4

05:20

03 - Static application security testing (SAST).mp4

03:14

04 - Dynamic application security testing (DAST).mp4

02:55

05 - Interactive application security testing (IAST).mp4

02:29

06 - Static code analysis (SCA).mp4

03:06

07 - Verification testing.mp4

02:10

08 - Pentesting.mp4

02:50

09 - RedBluePurple testing.mp4

03:32

10 - Monitoring AppSec in production.mp4

03:42

11 - RASP vs. WAF.mp4

06:32

04 - 3. Putting It All Together

01 - Creating AppSec metrics.mp4

05:09

02 - Continuous improvement.mp4

02:04

03 - Building an AppSec maturity model.mp4

04:23

04 - Security champions.mp4

05:02

05 - Putting the pieces together.mp4

05:43

05 - Conclusion

01 - Focus on the future.mp4

03:39

Description

Application security (AppSec) is one of the most important building blocks of a successful modern security program. With the rising popularity of the cloud, more and more data and software applications have been exposed to the public, posing significant risks. In this course, join instructor Tim Chase as he outlines the different parts of an AppSec program and shows you how to effectively implement each program to protect your organization and mitigate risk. Along the way, explore the basics of AppSec testing, including threat modeling, static application security testing (SAST), dynamic application security testing (DAST), interactive application security testing (IAST), static code analysis (SCA), verification testing, pentesting, production monitoring, and more. Tim also demonstrates how to put together the pieces of an AppSec model and measure metrics for continuous improvement and success.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Cyber Security

Network Security

Information Security

Tim Chase

Instructor's Courses

My demonstrated success in building a robust security program is the direct result of my ability to not just manage security and risks, but also to enhance and develop the systems and standards, in order to meet the growing needs of the organization. I am an expert at resolving challenging security incidents within short turnaround times. As you would see from my profile, I carry strong technical experience in testing and quality control that help me to be actively involved in the project management cycle. With a passion for developing and growing people, I take pride in coaching and mentoring strong teams that deliver excellence in technology and business.

Linkedin Learning

View courses Linkedin Learning

LinkedIn Learning is an American online learning provider. It provides video courses taught by industry experts in software, creative, and business skills. It is a subsidiary of LinkedIn. All the courses on LinkedIn fall into four categories: Business, Creative, Technology and Certifications. It was founded in 1995 by Lynda Weinman as Lynda.com before being acquired by LinkedIn in 2015. Microsoft acquired LinkedIn in December 2016.