Secure applications
Find weaknesses earlier and build security into the application lifecycle.
Practical web application security education and consulting focused on common risks, testing methodology, secure design and remediation communication.
Programme scope
What the web application security engagement can cover.
- HTTP, sessions and application attack surface
- Authentication and access-control risks
- Input validation and injection risks
- Cross-site scripting and browser-side risks
- CSRF and request-integrity concepts
- File upload and server-side risks
- Secure coding and review practices
- Testing evidence, severity and remediation
Who it is for
Adapted to role and maturity
Suitable for colleges, universities, organisations, departments and teams. The final scope is adjusted to participant experience, learning goals and available time.
Delivery: awareness session, workshop, multi-day programme, consulting engagement or blended format.
Engagement formats
Choose a format that matches the expected outcome.
Possible deliverables
What may be included in the agreed scope.
- Custom learning plan
- Demonstration or lab exercises
- Finding and remediation templates
- Secure-development checklist
- Prioritised improvement guidance
Define outcome
Agree audience, objectives, duration and expected deliverables.
Customise
Adapt examples, depth and exercises to the environment.
Deliver & enable
Conduct the engagement and provide agreed action guidance.
Start a conversation
Plan a web application security engagement for your institution.
Tell us your audience, goals and preferred delivery format. We will propose a focused engagement for your college or organisation.