APJ Fortify SCA (Static Code Analyzer) & SSC (Software Security Center) - Virtual Instructor-Led Training

Course Agenda:

Tuesday, May 12, 2020 To Friday, May 15, 2020

(UTC+08:00) Singapore

Course Descriptions:

This course provides participants with demonstrations and hands-on activities using a practical, solutions-based approach to identify and mitigate today’s most common business security risks to applications.  As a students, you will learn to scan, assess and secure applications using the Fortify Static Code Analyzer (SCA) and Software Security Center (SSC). This course includes hands-on activities to:

  • Identify security vulnerabilities within Fortify SCA
  • Exploit vulnerabilities in a sample application ď‚·
  • Remediate security vulnerabilities, including the OWASP Top 10 ď‚·
  • Update and edit Rulepacks ď‚·
  • Manage applications’ security issues with Fortify SSC 

Course Targeted Audience:

This course is intended for application developers who are new to or have been using the Fortify SCA and/or SSC to develop secure applications. It is also useful for development managers, security-focused QA testers, and security experts. 

Course Objectives:

Upon successful completion of this course, you should be able to:

  • Scan applications thoroughly and correctly in Fortify  
  • Assess raw scan results to create a prioritized list of high-impact security findings ď‚·
  • Correctly and efficiently remediate validated security findings ď‚·
  • Manage security goals to ensure good progress 
  • Integrate Fortify products with current SDLC best practices  

Course Pre-Requisites / Recommended Skills:

Students are encouraged to complete all Level 300 series Courses and Knowledge Checks available in SABA via Micro Focus Partner Portal https://microfocuspartner.force.com/s/:

  • Fortify - Application Security Terminology Technical Overview, Level 300
  • Fortify SCA Technical Presentation Training, Level 320
  • Fortify SCA Knowledge Check, Level 320
  • Fortify SCA Demo Training, Level 340
  • Fortify SCA Knowledge Check, Level 340

To be successful in this course, you should have the following knowledge: 

  • Basic programming skills (able to read Java, C/C++, or .NET) ď‚·
  • Basic understanding of web technologies: HTTP Requests and Responses, HTML tags, JavaScript, and server-side dynamic content (JSP, ASP or similar) ď‚·
  • Knowledge of Web and Application development practices  
  • Experience developing and/or managing software development for security  
  • Have an understanding of your organization’s compliance requirements 

Important Notes:

  1. Micro Focus Partner Portal Person Legal ID / SABA Learner ID is a mandate field required during registration.
  2. Must be able to attend and complete the 4 full days training in order to receive credit in your SABA training record.
  3. At the end of the training there is an online Proctored exam by the Trainer.
  4. Close registration date is 8 May 2020, 6pm SG time.

 

For more information, you many contact ellen.lim@microfocus.com.