Competency
This competency provides a solid foundation in implementing a Secure Development Life Cycle (SDLC) aligned with ISO/IEC 27001. Participants will learn key SDLC phases, including threat modeling, secure coding, and deployment practices, as well as application security principles, regulatory compliance, and authentication. The competency concludes with practical guidance on implementing and auditing security controls per ISO/IEC 27001, ensuring robust security throughout the software development process.
5 Trainers
About
This competency focuses on securing the software development process from the ground up. It covers all phases of the Secure Development Life Cycle (SDLC), including threat modeling, secure coding, and deployment best practices. Participants will also learn about key application security principles, regulatory requirements, and compliance with ISO/IEC 27001. The course provides practical examples to guide participants in implementing and auditing security controls throughout the software development life cycle.
This course is perfect for:
Module 1
Module 2
Module 3
Module 4
SDLC and Application Security
Implementation of Control 8.25
Implementation of Control 8.26
ISO/IEC 27001
Secure Development
Risk Management
Information Security and Risk Management Expert
Mike Boutwell is an esteemed expert in information security and risk management, with over 15 years in security and 10 years in risk management, contributing to companies such as Cisco, AT&T, IBM, Kyndryl, First Data, and Euroclear. Specializing in artificial intelligence and cybersecurity, he identifies and mitigates cyber risks while integrating AI risk management into existing security frameworks. Mike has advanced information security through innovative vendor collaborations, maintaining high compliance rates, and authoring insightful publications on AI and cybersecurity.