This course will give you the skills you need to carry out threat assessments throughout your software’s life.

From design and inception through to reviewing legacy systems, this repeatable and structured approach raises our focus from the lines of code we write to the ecosystems and processes we build.

You’ll learn how to understand your systems and their environment, assess your system using a threat assessment methodology, and prioritize your risks and apply defensive controls.

Microservices are growing in popularity and use. If done well, they can enable organizations to build and maintain their systems in ways that allow them to scale bigger, deploy faster, and be more resilient than their monolithic counterparts.

This also means securing them is slightly different, requiring us to focus more on specific areas like authentication, authorization, alerting, and resource hardening.

In this course, we’ll introduce new concepts and principles that relate to microservices — specifically focusing on where security is involved and how it can add value. We’ll also share the patterns you can use and different ways you can apply security to your architecture designing flows.

While application security is always evolving, right now we’re going through a large paradigm shift that will define the next generation of secure software development and architecture.

We’re moving away from centrally managed applications and trusted zones towards a cloud-centric technology environment and we need to approach security differently.

Zero Trust is a principled approach that can help application development teams decide on the right security architecture for their solutions and organizations. Zero Trust approaches are being mandated by governments and clients across the globe.