SOURCE: Aspect Security, Inc.

Aspect Security, Inc.

December 03, 2014 09:00 ET

Aspect Security Announces Application Security eLearning Version 3.0

Section 508 Compliant, Specialized Role-Based Learning Tracks, Mobile Enabled

COLUMBIA, MD--(Marketwired - Dec 3, 2014) - Aspect Security, a pioneer in application security, announced version 3.0 of their award-winning eLearning for Secure Application Development. Already OWASP Top Ten 2013, PCI/DSS, SANS 25, HIPAA and SOX compliant, version 3.0 contains major updates, including Section 508 compliance for use in government agencies and their contractors, HTML5 programming so content can be accessed from tablets and mobile devices, four additional application security topics to meet today's complex threat-scape, and customized, role-based learning tracks that provide information for specialized roles and responsibilities.

Web applications are the top target for attackers: 36% of breaches are attributed to vulnerable web applications and web services, according to the Verizon Data Breach Report. Aspect Security's eLearning is based on 14 years of live, instructor-led training teaching of over 20,000 people around the world about how to create and deploy secure applications.

Aspect Security's landmark study, the 2014 State of Developers' Application Security Knowledge Report, analyzed what developers do and don't know about application security threats, vulnerabilities, and defenses. Results from 1,425 developers, representing 695 organizations worldwide, demonstrated that overall, participants garnered a "D" score.

"Training development teams is the single best way to improve application security across an organization. We've designed our curriculum and deployment system to meet the needs of a wide range of organizations, so teams with a dozen people or organizations with thousands across the globe can track their staff's progress with our eLearning solution effectively," said Noelle Hardy, Executive Vice President of Services.

Version 3.0 includes five customized, role-based information learning tracks:

  • Application Security Awareness. Covers fundamental application security principles and training about basic application security concepts and knowledge, building a solid foundation of application security principles. Specifically designed for novice developers.
  • Secure Software Development. Covers the OWASP Top Ten 2013 and fulfills training requirements mandated by PCI/DSS, HIPAA and SOX. Includes cost-effective testing, prevention, and remediation techniques in Java, .NET, mobile, AJAX, Rich Internet Applications, Web Services, etc. Specifically designed for experienced developers.
  • Secure Architectures and Threat Modeling. Covers the art of threat modeling to enable teams to map to the requirements of the business and securing application architectures. Also covers how to harden web and application servers, development platforms, and frameworks. Specifically designed for developers and security architects.
  • Application Security Testing. Covers cost-effective and practical hybrid testing strategies, including static, dynamic, and runtime testing tools alongside manual code review and penetration testing. Specifically designed for testers and application security staff.
  • Leaders and Managers. Covers the SDLC and how to infuse secure software development into all stages of the lifecycle. Specifically designed for management and development leaders.

"Different people are tasked with different responsibilities, so it made sense to create specialized training groups for our users," said Jeff Williams, Chief Technology Officer. "All of the eLearning knowledge is useful, but by providing customized information tracks for specialized positions, people can focus on what matters most to their position."

For as little as $1.00 USD per user per day, Aspect Security's eLearning curriculum arms developers, testers, security architects and managers with the most current thinking around building security into applications. The web-based series of courses helps organizations resist application security breaches by educating those involved in creating and deploying secure applications.

Aspect Security's eLearning curriculum features 57 modules each of which run approximately 20 minutes in length, viewable from any computer or mobile device. The eLearning solution is in use worldwide at many corporate entities, including giants in the financial, manufacturing, e-commerce, and airline industries in addition to government agencies. Each learning module leverages educational best practices for comprehension and retention, including knowledge quizzes. For more information, please visit Or test your developer's appsec knowledge with our free Secure Coder Analytics.

About Aspect Security
Founded in 2002, Aspect Security is a consulting firm focused exclusively on application security, ensuring that the software that drives business is protected against hackers. Aspect Security's engineers analyze, test and validate on average of 5,000,000 lines of critical application code every month. Aspect Security unearths more than 10,000 vulnerabilities every year across a wide range of technologies and architectures. Aspect Security provides practical recommendations to improve the security posture of our clients.

Aspect Security has taught more than 100,000 people how to build, test and deploy secure applications with industry-leading application security training courses. Flexible delivery options include instructor-led training either in-person or via webcast, or on-demand through an innovative eLearning curriculum.

Contact Information

    Caroline Kirby
    Aspect Security
    Office: 301.604.4882
    Email Contact