Architecture Practices for Security

Lead the way to better security through architecture

Learn how architecture integrates with the other security measures, practice security-related activities for architects, clarify what to ask from developers, and structure your architecture to prevent threats from the OWASP top 10

Why Attend

Architects play a crucial role in the adoption of modern cybersecurity practices critical to the businesses of today. While a part of security lies with infrastructure and security engineers, the way architecture is structured influences the effectiveness of the whole cyber ecosystem for your product.

In this practical hands-on course, you will learn how architecture integrates with the other security measures, you will practice security-related activities for architects, you will clarify what to ask from developers, and how to prevent specific threats from the OWASP top 10 through the structure of your architecture.

Who Should Attend

  • Architects aiming to improve the security of their digital products
  • Senior developers with an interest in software architecture and cybersecurity
  • Security professionals who want to understand how architecture can help in preventing vulnerabilities

Practical Details

  • Language: English
  • Experiential, hands-on, interactive online learning with practical examples
  • Participants will be awarded a Mozaic Works certificate of completion
Quantity:
- +

Price
Original price was: €1,298.00.Current price is: €998.00.

Agenda

Role of Architects in Security

  • Build Security In
  • Collaborate with IT / infrastructure on ensuring security
  • Coaching and Educating Developers
  • Enforcing Development Security Practices

Understand Security Infrastructure

  • Static Scans (SAST)
  • Dynamic Scans (DAST)
  • Software Bill of Materials (SBOM)
  • Web Application Firewalls (WAF)

Architect’s Security Work

  • Classify data assets
  • Use the Right Encryption
  • Data Flow Diagrams
  • Threat Modeling
  • Architectural Tests and Custom Scan Rules

Practices to Enforce with Developers

  • Security Focused Automated Tests
  • Logging policy
  • Code and Design Reviews for Security
  • Threat Modeling as Code

Preventing Specific Threats

  • Injection Attacks
  • Server Side Request Forgery (SSRF) attacks
  • Data integrity failures
  • DNS based attacks

Extras:

  • Zero Trust Architecture
  • DevSecOps and Shift Left Security

More details and full agenda here

Meet Your Trainers

Alex Bolboaca

CTO, Senior Trainer at Mozaic Works

With over 25 years of international experience in the world of software and technology, Alexandru shares about himself: Being deeply passionate about technology creation I am a continuous learner in the field. Between reading, trying out technologies and multiple programming languages, presenting and participating to developer communities and conferences, I have learned enough to write two books and teach hundreds of developers and architects. I love working with smart people who want to get better at what they do, whether it’s team work, communication, management or technical skills. I offer you my passion, my experience and my capacity to adapt to your needs. About Alex

More about Alex Bolboaca >
0
    0
    Your Cart
    Your cart is empty
      Apply Coupon
      Scroll to Top