Web Security Testing Workshop

Course Description:

The Web Security Testing training focuses on proper test management in web application security. Understand and practice the solutions to the issues tasked when testing Web applications. Learn how to handle the specific technical and business risks, and to assess these risks using a professional testing approach. The course will teach the participants how to think like a security professional by developing and executing a security test plans and activities. Participants will be exposed to the common web application vulnerabilities, testing techniques and tools through hands-on lab exercises and stimulating lectures led by an expert instructor.

Course Objectives:

-Implement proper web security testing methodologies
-Have a grasp of the attack vectors in web applications targeted by hackers
-Understand updated security strategies on the web
-Have a comprehensive overview of penetrating web applications

Who Should Attend:

- Web Developers
- Application Designers
- Quality Assurance Testers
- IT Managers
- IT Auditors

Course Outline:

The Testing Effort
- Principles of Testing
- Testing Frameworks
- Test Planning
- Testing Team
- Test Design
- Test Implementation
- System Software Security
- Reports Analysis and Presentation

Client Side Application Security
- Application Attack Points
- Client Side Data
- Secure Transmissions
- Client Security

Server Side Application Security
- Dynamic Code
- Application Code
- Input Data
- Server-Side Data

Other Security Threats
- Social Engineering
- Dumpster Divers
- Insider Attacks
- Physical Attacks

Web Application Penetration Testing Overview
- Information Gathering
- Configuration Management
- Authentication
- Session Management
- Authorization
- Data Validation
- Denial of Service
- Web Services

Intruder Detection and Response
- Intruder Confusion
- Intrusion Detection
- Intrusion Response


Trainer's Profile:

Ariel Ben T. Senga, CISSP

Arbie is the President and CEO of SeQure Technologies, which he co-founded in 2005. He is also a Certified Information Systems Security Professional. Ariel has intensive experience in various information systems management and development in IT, communications, manufacturing, government, and engineering industries. He has conducted various engagements related to IT internal control reviews, standards compliances, and internal audit reviews.

Currently, he has been managing all of SeQure Technologies’ security services such as vulnerability assessments, penetration testing, security assessments and audits, policy controls, and network infrastructure deployments.

Ariel has developed training courses in security awareness, network vulnerability assessment and penetration testing. As with course development, Ariel has presented in Universities and Colleges in the Philippines as an information security advocate.

Duration: 3 days
Date:
January 5 to 7, 2011
Time: 9:00 am to 5:00 pm
Venue: CheQ Training Lab 1703 88 Corporate Center 141 Sedeno St. corner Valero St.,
Salcedo Village, Makati City Philippines 122
Course Fee: Php 16,800.00

Register Now!

Course fee is inclusive of handouts, certificate, snacks and lunch.  Please make all checks payable to Sequre Technologies, Inc.

Please bring your laptop.

For other details, please call 506-0248 or 0920-9490205 or email info@poshmarketingservices.com.

Cancellation of registration should be made seven working-days before the training date.  Otherwise, 50% of the training fee shall be charged.  No show during the training shall be charged 100% of the training fee.