EC-Council Sets New Application Security Training Standards

Uploaded on 2018-06-15 in TECHNOLOGY--Developments, NEWS-Cybersecurity News, FREE TO VIEW, TECHNOLOGY--Resilience

The world’s leading information security certification body, EC-Council, is set to redefine application security by introducing an all new certification program, Certified Application Security Engineer (CASE), on June 20, 2018. This certification will focus on the security requirements and best practices for software and application developers across all stages of the SDLC (software development life cycle). This is a major step and will come as a relief for software and application development teams that work in this multi-trillion dollar ecosystem.

“Most developers and application engineers do not have appreciation of security, from the point of view of what you need to do to develop applications that are secure,” says Jonathan Zwang, Former Senior Vice President, Global IT Infrastructure, Ralph Lauren, in his interview with EC-Council.
 
The CASE program is unlike other traditional programming training programs on the market, as it focuses on both pre-deployment and post-deployment security techniques and practices. This program encompasses security activities involved in all phases of the Secure-Software Development Life Cycle (S-SDLC) — planning, creating, testing, and deploying an information system.

According to the “Application Security Market 2018 Global Analysis, Growth, Trends and Opportunities Research Report”, the global application security market is expected to grow from USD 21 billion in 2016 to USD 125 billion by 2023 due to the growth and advancement of cyber-attacks across the world.

Application development teams are often under tremendous pressure to deliver applications since most modern organizations chase time-sensitive, rapid fire project timelines. The need for quick turnarounds can mean that security is overlooked in favor of meeting deadlines. This puts end user data and the reputation of the developers at great risk as applications (both web and offline) and software in general have become an inseparable part of daily life amidst the growing digital user-base across the world.

“We are very excited to offer IT professionals in the application industry the ability to reduce vulnerabilities and increase security through the development of a training and certification program that focuses on secure coding and much more,” says Jay Bavisi, President of the EC-Council Group. “With our latest developments, we are certain that application developers will be able to build secure applications that are robust enough to meet the application security challenges of today and tomorrow.”

openPR:

You Might Also Read: 

Security University CyberSecurity Registered Apprenticeship Program:

 

 

« Are US Federal Cyber Workers Good Enough?
Expect A Cyber Attack On The FIFA World Cup In Russia »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

CYBERPOL

CYBERPOL

CYBERPOL's mission is to facilitate the widest possible mutual assistance between all cyber crime law enforcement authorities to help mitigate global cyber threats.

SQNetworks

SQNetworks

SQNetworks provides a full range of cybersecurity consultancy, services and solutions.

National Cyber and Information Security Agency (NUKIB) - Czech Republic

National Cyber and Information Security Agency (NUKIB) - Czech Republic

NUKIB is the central Czech government body for cyber security, the protection of classified information in the area of information and communication systems and cryptographic protection.

AllegisCyber Capital

AllegisCyber Capital

AllegisCyber is an investment company with a focus on seed and early stage investing in cybersecurity and its applications in emerging technology markets.

CyberInsureOne

CyberInsureOne

At CyberInsureOne, we break down the complex world of cyber insurance, and connect you with providers that can give you and your company peace of mind.

Swarmnetics

Swarmnetics

Swarmnetics helps customers discover hard-to-find software vulnerabilities by hacking your system before the bad guys do.

Towerwall

Towerwall

Towerwall offers a comprehensive suite of security services and solutions using best-of-breed tools and information security services.

CyberArmor

CyberArmor

Cyber Armor defend everyday IT and OT systems, from government agencies to critical infrastructure, from system integrators to small industries.

Appsian Security

Appsian Security

Appsian provides powerful solutions that help organizations take control of their business critical data and financial transactions.

Intaso

Intaso

Intaso are a boutique head hunting and talent solution firm with specialist Cyber and Information Security expertise.

Seemplicity

Seemplicity

Seemplicity revolutionizes the way security teams work by automating, optimizing and scaling all risk reduction workflows in one workspace.

Harbor Networks

Harbor Networks

Harbor Networks is a communications systems integrator and managed services provider. We provide business consultation services for voice and data communication technology.

GoodAccess

GoodAccess

GoodAccess is the cybersecurity platform that gives your business the security benefits of zero trust without the complexities so your users can securely access digital resources anytime, anywhere.

Espria

Espria

Espria is a leading independent managed service provider with expertise in Cloud, IT, Communications and Document Solutions.

Prophet Security

Prophet Security

Prophet Security empowers organizations to triage, investigate, and respond to alerts with unparalleled speed and accuracy.

CyberForceHQ

CyberForceHQ

CyberForce helps cyber security professionals take real-world tests, get ranked and get paid better. It's that simple.