|

Date : TBC

Training Format & Duration
  • Live Online/ On-Site / Private Team Training
  • 1 Day
Do you have 5 or more attendees?

Official Training Partner

The Payment Card Industry Data Security Standard (PCI DSS) enhances cardholder data security. Applications that process card data must be secure. Specific knowledge and skills helps developers to code defensively and meet the secure coding and application security standards required by PCI DSS.

 |

Date : TBC

Do you have 5 or more attendees?
Contact Us about Team Training >>
bkg-decorativelines-big-white

Next Scheduled Course

Next Scheduled Course

No items found.

About this course

About this course

Why this course?

  • The Payment Card Industry Data Security Standard (PCI DSS) requires that organisations developing applications that handle card data secure their software against common vulnerabilities. As part of this, PCI DSS compliant organisations that process card payments and/or cardholder data need to train their software developers in secure coding techniques.
  • Our PCI Secure Development training aims to provide developers with an understanding of the issues highlighted in PCI DSS requirement 6.5. They will then get an in-depth review of the various types of threats against systems, and learn the skills required to recognize software vulnerabilities and implement the processes and measures associated with the security development lifecycle (SDL)

Objectives

This course aims to provide the knowledge and resources required to improve the security of applications following a secure development lifecycle (SDL) process. For additional security training please see Related Training at the end of this page.

Overview

The topics covered include:

  • General Application Security Concepts
  • Identify security vulnerabilities in code (OWASP Top 10)
    • Injection
    • Broken Authentication
    • Sensitive Data Exposure
    • XML External Entities (XXE)
    • Broken Access Control
    • Security Misconfiguration
    • Cross-Site Scripting (XSS)
    • Insecure Deserialization
    • Using Components with Known Vulnerabilities
  • Insufficient Logging & Monitoring
  • Implement Security Controls
  • Implement the processes and measures associated with the security development lifecycle (SDL).

Duration: 1 day (8 hours)

Attendee Profile

The course is intended for Developers, Software Engineers, and Software Architects (any level).

Attendee Testimonials

Benefits

What is included?

Differentiators

Recognition

Exam & Certifications

Materials

  • Soft copy of tools & presentation slides
  • Certificate of Participation (CPE Points)
Proudly Certified for Excellence in Cybersecurity Training

ISC2 Official Training Partner

ISC2 Official Training Partner

As an ISC2 Official Training Partner, we provide access to world-class certifications such as CISSP®, CCSP®, and SSCP®, delivering training that aligns with the latest industry standards.

By partnering with ISC2, we ensure our clients stay ahead in the ever-evolving cybersecurity landscape, confidently equipped to protect critical data and infrastructure.

Cycubix-ISC2-Official-Training-Partner-logo

Team Training with Cycubix

Team Training with Cycubix

Get the best out of our trainings

Get the best out of our trainings

Instructors

The minds behind the course

The minds behind the course

Picture of Fabio Cerullo Cybersecurity Instructor

Fabio Cerullo

Senior Official ISC2 Authorised Instructor for CISSP, CCSP, CSSLP and SSCP

Fabio Cerullo is the Managing Director of Cycubix. He has extensive experience in understanding and addressing the challenges of cybersecurity from over two decades working in and with organisations across a diverse range of industries – from financial services to government departments, technology and manufacturing.

Fabio Cerullo is a Senior Authorised Instructor for ISC2,the global leader in information security education and certification. Fabio has delivered training to thousands of IT and security professionals world wide in cyber, cloud, and application security. As a member of ISC2 and OWASP organisations, Fabio helps individuals and organisations strengthen their application security posture and build fruitful relationships with governments, industry and educational institutions.

Fabio is a regular speaker and delivers training at events organised by leading Cybersecurity associations including OWASP and ISC2. He holds a Msc in Computer Engineering from UCA and the SSCP, CISSP, CSSLP & CCSP certifications from ISC2.

Show (Instructors)

The minds behind the course

The minds behind the course

Picture of Fabio Cerullo Cybersecurity Instructor

Fabio Cerullo

Fabio Cerullo is the Managing Director of Cycubix. He has extensive experience in understanding and addressing the challenges of cybersecurity from over two decades working in and with organisations across a diverse range of industries – from financial services to government departments, technology and manufacturing.

Fabio Cerullo is a Senior Authorised Instructor for ISC2,the global leader in information security education and certification. Fabio has delivered training to thousands of IT and security professionals world wide in cyber, cloud, and application security. As a member of ISC2 and OWASP organisations, Fabio helps individuals and organisations strengthen their application security posture and build fruitful relationships with governments, industry and educational institutions.

Fabio is a regular speaker and delivers training at events organised by leading Cybersecurity associations including OWASP and ISC2. He holds a Msc in Computer Engineering from UCA and the SSCP, CISSP, CSSLP & CCSP certifications from ISC2.