Immersive Labs for Development and Engineering Teams drops people into a range of continually updated SecDevOps challenges, scenarios, and simulations in the browser. Our platform teaches everything from basic underlying theory, such as authentication and authorisation, to interactive challenges around the latest vulnerabilities.
 
Programme Overview
As organisations digitise faster and at greater scale than ever before, achieving a secure software development lifecycle through skills development is increasingly important. Achieving this on the ground is not easy. Recognised tensions between security and engineering aside, skills development involves a large outlay of time from expensive people, spreading already overburdened resources thinner to ‘shift left.’ The alternative is static click-through training questions dictating best practice. For a proudly creative and pragmatic talent-set, these are quickly forgotten and have minimal impact.

Application Security Programme with Immersive Labs

R8 500,00

Our progressive platform is built to address this problem, embedding security in the human elements of the software lifecycle to deliver tangible business outcomes in three ways:

Equipping: Arm people with a range of continually updated secure development capabilities relevant to a highly fluid sector, from underlying theory to specialist skills.

Exercising: Run engineering teams through real-world scenarios which engage hands-on individuals in a way proven to build cognition and reduce skills decay.

Evidencing: Understand and visualise the secure development capabilities of the entire team for better risk management and a more efficient CI/CD pipeline.
Dynamic storylines: Progress through real life gamified narratives based on everything from OWASP Top Ten and CWE Top 25, to breaking vulnerabilities. This encourages active learning in a way which appeals to the hands-on mindset of developers, embedding skills into the CI/CD pipeline. Ultimately, this prevents code being recalled once committed, reducing cost and friction in the innovation cycle.

Continuous development: Upskill using regularly updated content which reflects the ever-changing nature of risk presented by a highly dynamic technology environment. As new vulnerabilities, tools and techniques emerge, so does the content your team learns from. This reduces friction and time-outlay from security teams and keeps the capabilities of developers and engineers relevant, encouraging more secure organisational transformation.

Across the entire SDLC: Build skills and understanding of security across the whole software lifecycle with content designed to be understood and used by everyone from coders, to QA, testing, and security operations. Challenge your developers to experience a Python SQL Injection and help security teams understand
the nuanced differences in delivery timescales between Kanban and scrum. With these understandings, once siloed teams integrate more effectively and unhelpful tensions are reduced.

Actionable insights: Analyse and visualise the security capabilities
of the entire SDLC, either as an overview or in granular detail.
This helps managers understand where skills lie and task teams appropriately, for example by only allowing skilled members to commit code on high-risk applications. Not only does this reduce organisational risk, it also makes for better budgeting and strategy decisions.

Application Security Programme with Immersive Labs

What you will learn:

Who should attend?

Key features of the programme:

Details