IOActive
Site Map  |  Privacy Policy  |  Advisories

About Us

Services

Overview
Application Security

Application Code Review
Threat Modeling
Mobile Device Assessments
Software Assurance Training
Scada and Smart Grid
PCI and Compliance
Social Engineering
Automated Teller Machines
Security Development Lifecycle
Infrastructure Audit


News

IOActive Labs

Contact
IOActive Labs IOBOT! Click to learn more.

 
 greybar
Software Assurance Training
 greybar

Quality education and training are a critical requirement to develop secure software that is capable of withstanding attack. To assist developers in this effort, we offer a variety of classes that we have developed through years of real-world experience and are customized to suit each organization's specific needs. Our courses are taught in an engaging classroom environment that instructs developers how to design, build, and deploy secure systems.

IOActive's training courses can be the first step to organizations saving time and money by learning methods that allow them to develop more robust, secure software.

Advanced ASP.Net Exploits and Countermeasures
To develop secure software and mitigate attack, developers must be knowledgeable about current security exploits and research. IOActive prides itself on staying abreast of the latest exploits, attack techniques, and research efforts, all of which we share in our training courses, imparting knowledge through lecture and hands-on lab activities. We continually evolve our ASP.NET training course so that it includes up-to-date research and development, and introduces the newest exploits, threat vectors, and countermeasures available for the platform.

Writing Secure Code: .NET and Java
The need for developers to understand threats and write secure code in response has never been more important. By following a ground-up approach, our Secure Coding series teaches developers of all skill levels how to write secure code, understand the security implications of their profession, and gain the critical skills necessary to avoid introducing vulnerabilities to their product.

Rapid Application Threat Modeling
Many in the security industry view threat modeling as a lengthy and complicated process. To combat this misconception, IOActive's training course offers ways to expedite the process and make it more palpable to our clients. This course provides developers, designers, and managers with a base set of skills and knowledge that enables them to discover, map, and mitigate risks accurately within any project or initiative.

The Security Development Lifecycle
The value of SDLs is widely accepted and understood in a general sense, but many organizations are unclear as to how they can integrate one with their development cycle without incurring extra cost or introducing new problems. IOActive's intensive, three-day course introduces the Microsoft model of secure software development and covers its 12 steps, providing a starting point for teams struggling to introduce or implement an SDL. Our instructors deliver extensive field knowledge and offer examples of how some organizations have implemented SDL variations in their environment.

Download the Training Services Brochure (PDF).
 
 greybar

More Information
Featured Video:
 Watch Best Practices For Securing Web Applications.


Download PDF:
 Download Application Security Services Brochure.


IOActive Profile:
 Established: 1998
Headquarters: Seattle, WA and London, UK
Privately held and self-funded
 
Customers:
 Global 500 companies including power and utility, game, hardware, retail, financial, media, travel, aerospace, healthcare, high-tech, social networking, and software development organizations.
 

"
We can confidently say that IOActive has provided us with excellent thought leadership around application security, that their mature practices have been invaluable, and that we are proud to use them as a trusted advisor to eBay, Inc."

— Dave Cullinane, CISO of eBay

Visit our Facebook page Visit our Twitter page Visit us on Flickr