Application Security Engineer - Instructor Award for Professionals 2017 - 2019 - Badge
Name
Application Security Engineer - Instructor Award for Professionals 2017 - 2019.
Issuer
IBM.
Description
Under guidance of an experienced instructor; this badge earner has demonstrated the ability to teach others scanning and testing of web applications for the identification and analysis of vulnerabilities and attacks; using IBM AppScan Standard. This individual has demonstrated proficiency teaching students topics such as OWASP web application security standards; SQL injection flaws; authentication; cross-site scripting; sensitive data exposure; and Glass box scanning.
Badge Criteria
What it takes to earn this badge:
- Expected to be an Information Technology professional working for IBM an IBM Customer or Business Partner and attending the IBM Skills Academy.
- Teaching of Module I - Cyber Security Overview: Covering Security Overview Trends Case Studies Security standards and framewks.
- Teaching of Module II - Cyber Security Foundations: Covering Application Security Technologies: - HTML5 and JavaScript Programming - SQL Relational database objects and tables.
- Teaching of Module III - Application Security Analyst: Covering Web application security threats OWASP attack classifications SQL injection attacks Broken authentication Cross-site Scripting Insecure direct object reference Sensitive data exposure Cross-site request fgery Security in the software development lifecycle Automated security scans and test Vulnerability testing Repting Scanning sites that use JavaScript and Flash Glass box Troubleshooting AppScan.
- Teaching the course under the supervision of a qualified instruct and receiving teaching approval from the supervising instruct.
- Receiving a 70% positive survey feedback.
- Receiving the Mastery Award f Professionals 2017.
Tags
Skills indicated by the badge
Ethical Hacking|Vulnerability Testing|Threat Modeling|Glass Box|Web Services|SDK|AXF|Web Application Security|Security Breach|OWASP Classifications|WASC Classification|Security Testing|HTML|Scripting|Web2.0|AJAX|HTTP|Injection Flaws|SQL Injection|Broken Authentication|Session Hijacking|Cross-site Scripting|Insecure Direct Object Reference|Security Misconfiguration|Sensitive Data Exposure|Function-level Access Control|Cross-site Request Forgery|Unvalidated Redirects|SDLC|Security Vulnerabilities|IBM AppScan Standard|Security Scans|Application Scans