SEC522 provides a comprehensive approach to securing modern application ecosystems, including web applications, APIs, and microservices. The course covers foundational and advanced security concepts such as secure coding practices, authentication and authorization mechanisms, API security frameworks (like OAuth and OpenID Connect), and protecting microservices architectures. Participants will explore vulnerabilities like injection attacks, broken access controls, and insecure deserialization, while learning how to defend against them using practical mitigation strategies. Through hands-on labs and real-world scenarios, SEC522 equips security professionals with the skills to identify and address security risks in contemporary application environments, ensuring robust and scalable protection.
- Web Fundamentals and Secure Configurations
- nput-Related Defenses
- Authentication and Authorization
- Web Services and Front-End Security
- APIs and Microservices Security
- DevSecOps and Defending the Flag
