Release Management Authors: Liz McMillan, Jnan Dash, Lori MacVittie, Gilad Parann-Nissany, Carmen Gonzalez

News Feed Item

Aspect Security Marks eLearning Curriculum Milestone With More Than 100,000 Modules in Use Worldwide

Web-Based Education Series Arms Developers With the Most Current Thinking Around Building Security Into Applications

COLUMBIA, MD -- (Marketwire) -- 12/17/12 -- Aspect Security, a pioneer in application security, today announced that more than 100,000 individual modules of its eLearning curriculum are in use by developers worldwide at many corporate entities, including giants in the financial, shipping and logistics, and airline industries, and large government agencies.

Aspect Security eLearning is a web-based series for developers, managers, testers and security architects that helps companies resist application security breaches by educating those involved in creating applications. Aspect Security's eLearning curriculum features 53 learning modules at three different levels of technical depth.

Each module leverages educational best practices for comprehension and retention. The modules are approximately 20 minutes in length and feature regular quizzes to aid in comprehension and retention. Now, with the addition a module dedicated to mobile application security, Aspect Security's eLearning curriculum offers a complete solution to application security education.

"We are very proud of our eLearning offering, which really stands alone in the industry for its breadth, levels of technical depth and suitability for deployment by even the most distributed global enterprise," said Andi McDowell, VP, Products and Administration, Aspect Security. "We put a great deal of effort into designing a curriculum and a deployment system to meet the needs of a wide range of organizations and raise the bar in the industry for application security education."

"Application security is the single greatest area of vulnerability for enterprise IT right now, and is largely a 'people problem' -- in our experience the single most effective way an organization can address this is to train developers in secure coding," said Jeff Williams, Aspect Security CEO and Co-Founder of the Open Web Application Security Project (OWASP). "In this increasingly connected universe, developers need to be armed with the right knowledge about application security and how to address vulnerabilities so that they can write secure code from the outset."

Angel, global leader in enterprise, cloud-based, Interactive Voice Response (IVR) and call-center customer experience solutions, deployed Aspect's interactive eLearning modules for its secure application development training.

"PCI Level I certification was a huge achievement for us, and thanks to Aspect, the development team was well prepared for the process. With Aspect eLearning we were able to deploy a very cost-effective remote training solution that turned out to be more effective than the instructor-led options we explored," said Ian Macdonald, Senior Systems & Security Architect, Angel.

Download the full case study here https://www.aspectsecurity.com/case-study/

Aspect eLearning Modules
Aspect's eLearning for Secure Application Development includes a comprehensive selection of web based interactive modules. Each module features culturally neutral content that is suitable for use by English-speaking developers around the world. Organizations with Learning Management Systems (LMS) can have the modules delivered directly, or a hosting solution can be provided by Aspect.

The modules are organized into three tiers by level of technical depth:

  • Awareness Series - Includes 11 modules that deliver a general overview of application security suitable for IT executives and managers as well as developers, testers and security architects.
  • Technical Series - Features 35 modules that emphasize more technical topics including the OWASP Top Ten, PCI awareness, how to prevent Cross-Site Scripting, Clickjacking and other attacks, designed for developers, managers, testers, and security architects.
  • Specialist Series - Offers 7 modules on advanced methodologies and application security verification and is geared towards security-focused managers, testers and architects.

Customers may choose to purchase the entire 53 module curriculum or select content a la carte, tailored to meet their specific training needs. Designed for groups rather than individual users, the minimum order is $5,000.

Organizations and developers interested in learning more about Aspect's eLearning for Secure Application Development can download the curriculum, explore a course-mapping guide and view an interactive demo at www.aspectsecurity.com/services/elearning/.

For new customers of the eLearning offering, Aspect Security is offering 15 months for the price of 12, an offer valid through February 1, 2013. For more information, please visit www.aspectsecurity.com/services/elearning/.

About Aspect Security
Founded in 2002, Aspect Security is a consulting firm focused exclusively on application security, ensuring that the software that drives business is protected against hackers. Aspect Security's engineers analyze, test and validate on average of 5,000,000 lines of critical application code every month. The company unearths more than 10,000 vulnerabilities every year across a wide range of technologies and architectures, and the company's practical recommendations dramatically improve clients' security posture.

Aspect Security has taught tens of thousands of people around the world how to build, test and deploy secure applications, making the company a leader in application security training. Flexible delivery options include instructor-led training either in-person or via webcast or on-demand through an innovative eLearning curriculum.

CEO Jeff Williams is a Co-Founder of the Open Web Application Security Project (OWASP), through which he has made vast industry contributions including: the OWASP Top Ten, Enterprise Security API (ESAPI), Application Security Verification Standard (ASVS), Risk Rating Methodology and WebGoat.

For more information, please visit www.aspectsecurity.com.

Add to Digg Bookmark with del.icio.us Add to Newsvine

Dan Chmielewski
Madison Alexander PR
Email Contact

More Stories By Marketwired .

Copyright © 2009 Marketwired. All rights reserved. All the news releases provided by Marketwired are copyrighted. Any forms of copying other than an individual user's personal reference without express written permission is prohibited. Further distribution of these materials is strictly forbidden, including but not limited to, posting, emailing, faxing, archiving in a public database, redistributing via a computer network or in a printed form.

@ThingsExpo Stories
Data is the fuel that drives the machine learning algorithmic engines and ultimately provides the business value. In his session at Cloud Expo, Ed Featherston, a director and senior enterprise architect at Collaborative Consulting, will discuss the key considerations around quality, volume, timeliness, and pedigree that must be dealt with in order to properly fuel that engine.
Virgil consists of an open-source encryption library, which implements Cryptographic Message Syntax (CMS) and Elliptic Curve Integrated Encryption Scheme (ECIES) (including RSA schema), a Key Management API, and a cloud-based Key Management Service (Virgil Keys). The Virgil Keys Service consists of a public key service and a private key escrow service. 

The best way to leverage your Cloud Expo presence as a sponsor and exhibitor is to plan your news announcements around our events. The press covering Cloud Expo and @ThingsExpo will have access to these releases and will amplify your news announcements. More than two dozen Cloud companies either set deals at our shows or have announced their mergers and acquisitions at Cloud Expo. Product announcements during our show provide your company with the most reach through our targeted audiences.
Fact is, enterprises have significant legacy voice infrastructure that’s costly to replace with pure IP solutions. How can we bring this analog infrastructure into our shiny new cloud applications? There are proven methods to bind both legacy voice applications and traditional PSTN audio into cloud-based applications and services at a carrier scale. Some of the most successful implementations leverage WebRTC, WebSockets, SIP and other open source technologies. In his session at @ThingsExpo, Da...
Fifty billion connected devices and still no winning protocols standards. HTTP, WebSockets, MQTT, and CoAP seem to be leading in the IoT protocol race at the moment but many more protocols are getting introduced on a regular basis. Each protocol has its pros and cons depending on the nature of the communications. Does there really need to be only one protocol to rule them all? Of course not. In his session at @ThingsExpo, Chris Matthieu, co-founder and CTO of Octoblu, walk you through how Oct...
SYS-CON Events announced today that Embotics, the cloud automation company, will exhibit at the 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. Embotics is the cloud automation company for IT organizations and service providers that need to improve provisioning or enable self-service capabilities. With a relentless focus on delivering a premier user experience and unmatched customer support, Embotics is the fas...
The Internet of Things (IoT), in all its myriad manifestations, has great potential. Much of that potential comes from the evolving data management and analytic (DMA) technologies and processes that allow us to gain insight from all of the IoT data that can be generated and gathered. This potential may never be met as those data sets are tied to specific industry verticals and single markets, with no clear way to use IoT data and sensor analytics to fulfill the hype being given the IoT today.
More and more brands have jumped on the IoT bandwagon. We have an excess of wearables – activity trackers, smartwatches, smart glasses and sneakers, and more that track seemingly endless datapoints. However, most consumers have no idea what “IoT” means. Creating more wearables that track data shouldn't be the aim of brands; delivering meaningful, tangible relevance to their users should be. We're in a period in which the IoT pendulum is still swinging. Initially, it swung toward "smart for smar...
@ThingsExpo has been named the Top 5 Most Influential M2M Brand by Onalytica in the ‘Machine to Machine: Top 100 Influencers and Brands.' Onalytica analyzed the online debate on M2M by looking at over 85,000 tweets to provide the most influential individuals and brands that drive the discussion. According to Onalytica the "analysis showed a very engaged community with a lot of interactive tweets. The M2M discussion seems to be more fragmented and driven by some of the major brands present in the...
WebRTC has had a real tough three or four years, and so have those working with it. Only a few short years ago, the development world were excited about WebRTC and proclaiming how awesome it was. You might have played with the technology a couple of years ago, only to find the extra infrastructure requirements were painful to implement and poorly documented. This probably left a bitter taste in your mouth, especially when things went wrong.
The Quantified Economy represents the total global addressable market (TAM) for IoT that, according to a recent IDC report, will grow to an unprecedented $1.3 trillion by 2019. With this the third wave of the Internet-global proliferation of connected devices, appliances and sensors is poised to take off in 2016. In his session at @ThingsExpo, David McLauchlan, CEO and co-founder of Buddy Platform, discussed how the ability to access and analyze the massive volume of streaming data from millio...
SYS-CON Events announced today that Pulzze Systems will exhibit at the 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. Pulzze Systems, Inc. provides infrastructure products for the Internet of Things to enable any connected device and system to carry out matched operations without programming. For more information, visit http://www.pulzzesystems.com.
Successful digital transformation requires new organizational competencies and capabilities. Research tells us that the biggest impediment to successful transformation is human; consequently, the biggest enabler is a properly skilled and empowered workforce. In the digital age, new individual and collective competencies are required. In his session at 19th Cloud Expo, Bob Newhouse, CEO and founder of Agilitiv, will draw together recent research and lessons learned from emerging and established ...
Enterprise IT has been in the era of Hybrid Cloud for some time now. But it seems most conversations about Hybrid are focused on integrating AWS, Microsoft Azure, or Google ECM into existing on-premises systems. Where is all the Private Cloud? What do technology providers need to do to make their offerings more compelling? How should enterprise IT executives and buyers define their focus, needs, and roadmap, and communicate that clearly to the providers?
One of biggest questions about Big Data is “How do we harness all that information for business use quickly and effectively?” Geographic Information Systems (GIS) or spatial technology is about more than making maps, but adding critical context and meaning to data of all types, coming from all different channels – even sensors. In his session at @ThingsExpo, William (Bill) Meehan, director of utility solutions for Esri, will take a closer look at the current state of spatial technology and ar...
SYS-CON Events announced today that Streamlyzer will exhibit at the 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. Streamlyzer is a powerful analytics for video streaming service that enables video streaming providers to monitor and analyze QoE (Quality-of-Experience) from end-user devices in real time.
You have great SaaS business app ideas. You want to turn your idea quickly into a functional and engaging proof of concept. You need to be able to modify it to meet customers' needs, and you need to deliver a complete and secure SaaS application. How could you achieve all the above and yet avoid unforeseen IT requirements that add unnecessary cost and complexity? You also want your app to be responsive in any device at any time. In his session at 19th Cloud Expo, Mark Allen, General Manager of...
SYS-CON Media announced today that @WebRTCSummit Blog, the largest WebRTC resource in the world, has been launched. @WebRTCSummit Blog offers top articles, news stories, and blog posts from the world's well-known experts and guarantees better exposure for its authors than any other publication. @WebRTCSummit Blog can be bookmarked ▸ Here @WebRTCSummit conference site can be bookmarked ▸ Here
Cloud based infrastructure deployment is becoming more and more appealing to customers, from Fortune 500 companies to SMEs due to its pay-as-you-go model. Enterprise storage vendors are able to reach out to these customers by integrating in cloud based deployments; this needs adaptability and interoperability of the products confirming to cloud standards such as OpenStack, CloudStack, or Azure. As compared to off the shelf commodity storage, enterprise storages by its reliability, high-availabil...
The IoT industry is now at a crossroads, between the fast-paced innovation of technologies and the pending mass adoption by global enterprises. The complexity of combining rapidly evolving technologies and the need to establish practices for market acceleration pose a strong challenge to global enterprises as well as IoT vendors. In his session at @ThingsExpo, Clark Smith, senior product manager for Numerex, will discuss how Numerex, as an experienced, established IoT provider, has embraced a ...