Call : (+91) 968636 4243
Mail : info@EncartaLabs.com
EncartaLabs

Fortify Security Solutions

( Duration: 2 Days )

This Fortify Security Solutions training course provides introduction to application security when developing and testing your software for security vulnerabilities with the Fortify product suite. You will learn about the threats to applications as well as the architecture and operation of the Fortify solution. Through hands-on activities you will learn how to implement the Fortify SCA (Static Code Analyzer), Fortify SSC (Software Security Center), and WebInspect.

By attending Fortify Security Solutions workshop, delegates will learn to:

  • Identify application security (OWASP Top 10) and governance with OpenSAMM
  • Run scans using Fortify Static Code Analyzer (SCA) and WebInspect (WI)
  • Manage projects and remediate issues using the SSC

  • Basic programming skills (able to read Java, C/C++, or .NET)
  • Basic understanding of web technologies: HTTP Requests and Responses, HTML tags, JavaScript, and server-side dynamic content (JSP, ASP or similar)
  • Knowledge of Web Application development and security practices

The Fortify Security Solutions class is ideal for:

  • Software Developers, Product Managers, Development Managers, Q/A Managers, Q/A Analysts, and Application Security Analysts

COURSE AGENDA

1

Overview of OpenSAMM

  • Apply the Software Assurance Maturity Model (SAMM) to an organization’s security infrastructure
  • Use the SAMM guidelines to evaluate the needs of your software security practices
  • Determine the Fortify products as they correlate to SAMM compliancy to your organization’s security practices
2

Examine Security Vulnerabilities

  • List the OWASP Top 10 Application Security Risks
  • Perform a basic Threat Model and Risk Assessment
  • Integrate security activities into a basic SDLC
3

Utilizing Fortify Products

  • Identify the Fortify Products and how they satisfy the guidelines of the OpenSAMM initiative
  • Describe Reporting and Incident Analysis
  • Describe architecture and structure of Fortify Products in business security environment
  • Present overview of implementation requirements for Fortify Product Suite
4

Fortify SCA (Static Code Analyzer)

  • Navigate Audit Workbench
  • Audit and suppress issues
  • Identify information on security issues
5

WebInspect (WI) / WI Agent

  • Define operational capabilities of WebInspect
  • License and Activate WebInspect
  • Navigate the operational displays of WebInspect
6

Fortify SSC (Software Security Center)

  • Tune scan results
  • Create projects in SSC
  • Connect to SSC from AWB
  • Upload and download scans in SSC
  • Generate reports to show outstanding issues & progress on security goals
  • Integrate security activities into your SDLC

Encarta Labs Advantage

  • One Stop Corporate Training Solution Providers for over 6,000 various courses on a variety of subjects
  • All courses are delivered by Industry Veterans
  • Get jumpstarted from newbie to production ready in a matter of few days
  • Trained more than 50,000 Corporate executives across the Globe
  • All our trainings are conducted in workshop mode with more focus on hands-on sessions

View our other course offerings by visiting https://www.encartalabs.com/course-catalogue-all.php

Contact us for delivering this course as a public/open-house workshop/online training for a group of 10+ candidates.

Top
Notice
X