learning map

Security

Secure Products

Welcome to the Secure Products ecosystem. This journey will take from gaining a good understanding of cybersecurity basics to the ability of securing applications and services to deliver security trust and security confidence as essential components of a safe digital experience. Security by design is key in every development process as well testing security, looking for vulnerabilities and remediating them and continuously delivering security quality along the way of DevSecOps practices. You will come across topics such as Security Architecture, Application Security, vulnerability management, risk management and security requirements among others that will guide you through your Career powered by the CyberSecurity Studio.

Read

Contents

Plan

"Plan" combines a set of skills to develop an understanding to managing cybersecurity risk to applications, people, assets, data, and capabilities. Such understanding needs to be put forward into a roadmap (actions to reach a goals) or into ground rules (governance) that help provide direction for next steps.

Specific Contents (5)

Risk Management

7 resources

Security Requirements

5 resources

Consulting

8 resources

Data Governance

1 resource

Regulations

3 resources

Protect

"Protect" refers to a set of skills to prevent risks, put safeguards in place and preserve services and products to guarantee its security. This capability follows the "security by design" principle to tackle issues before they become threats, risks or breaches.

Specific Contents (8)

Secure Development by design

1 resource

Architecture

12 resources

Dynamic Application Testing

8 resources

Security Functional Testing

2 resources

Infrastructure security

14 resources

Threat modelling

3 resources

Automation

4 resources

Static Application Testing

1 resource

Detect

"Detect" combines skills required to identify the occurrence of a cybersecurity alerts, patterns and events and to make a correlation of such data. A detailed analysis is needed to create actionable information out of it in order to mitigate risks before they materialize.

Specific Contents (3)

Security Controls

2 resources

Vulnerability Management

3 resources

Reporting

1 resource

Respond & Recover

"Respond & Recover" combines skills to contain the impact of a cybersecurity incident and to remmediate the root-cause or minimize the damage in a timely manner.

Specific Contents (2)

DRP

1 resource

Incident response

3 resources