Software and Systems Engineering for ISSOs
Overview
This course presents the core concepts of software and systems engineering including the software lifecycle. Students will be exposed to software development methodologies including classic SDLC/Waterfall, Agile and DevOps. Best practices in software design and implementation with a view toward recognizing and avoiding weakness and vulnerabilities in software is a key part of this course. QA testing, code quality and vulnerability scanning, configuration management, and maintenance are also covered. We will also discuss issues related to outsourcing and working in cloud environments.
Who Should Take This Course
Prerequisites
Students should have taken UMBC Training Centers’ Cybersecurity Fundamentals course or have equivalent skills and experience.
Why You Should Take This Course
Systems and Software power business and mission processes. The security of those systems can be compromised at any point in their development or acquisition, beginning with initial requirements and design all the way through deployment and maintenance. Understanding system development processes, roles, quality and risks is key to ensuring system security throughout the lifecycle.
Course Outline
Software and Systems Engineering for ISSOs
- The Software Engineering Process
- Economics of Systems Engineering
- SDLC/Waterfall Model
- Project Roles in Software/System Development
- Gathering System Requirements
- Functional Specifications
- Software Design and Implementation
- Source Code control
- Software Testing
- Release and Configuration Management
- System Reliability and Maintenance
- Secure Programming & Information Security Concepts
- Designing Secure Architecture
- Security Controls & Vulnerability Mitigation
- Access Control
- Data Security & Cryptography
- Project Management
- Agile Software Development
- DevOps and DevSecOps
- System Audit & Validation