“Very informative. Touches on all aspects of application, database, and web security.”
                                    -Yvette Carbone, Director, Credit Suisse

The recent avalanche of government regulatory initiatives, litigations, and intensified attacks on Web-based applications, along with traditional information asset protection, have significantly raised the stakes on the importance of secure application design, testing, certification/accreditation, and audit. In addition, IT applications have become more complex and frequently rushed to market by commercial IT product and internal developers, increasing the business risks and the challenges to applying and verifying reliable security safeguards.

In this information-packed five-day seminar, you will cover key building blocks and significant risks, and systematically sort through the available safeguards in today's complex Web-enabled, multi-tiered applications, including an overview of the elusive Web services and service-oriented architecture (SOA) applications. You will place special emphasis on a control point definition and transactional analysis approach to secure application design, based on industry standards and best practices. You will also cover security service providers and auditing within the context of robust but practical enterprise architecture and governance models. Case studies and checklists will provide reinforcement and enhanced comprehension of complex design, safeguard concepts, and best practices.

Prerequisite: Auditing Application Systems Development or Intermediate IT Audit School

Advance Preparation: None         Learning Level: Intermediate

Delivery Method: Group-Live         Field: Auditing 

Bonus: You will receive the MIS Swiss Army Knife Reference listing hundreds of valuable information security and audit resources, including free software security and audit tools.