ENG 211 – How to Create Application Security Design Requirements (UPDATED)

Course Overview

Many security vulnerabilities originate from design flaws due to the absence of formal security requirements early in the development process. This course teaches learners to embed security into design phases, aligning with both functional and security requirements in accordance with NIST SSDF, OWASP Web Top 10, and General Data Protection Regulation (GDPR).

On successful completion of this course, learners should have the knowledge and skills required to:

• Apply the ASM model to your development process
• Describe the security-engineering process
• Describe the key security-engineering activities
• Determine your security objectives
• Apply security design guidelines
• Conduct security architecture & design reviews