RIAS 102

Foundations of Cybersecurity for Software Engineering Professionals

This course is designed to lay a foundation for software engineers looking to study Cybersecurity. The first half provides a useful framework for software engineering professionals to synthesize key aspects of cybersecurity into their higher-level business objectives, including assessing and communicating cybersecurity-related risks; management and governance; and the role of law (compliance). In the second half, these concepts are more specifically applied and discussed in the context of common application security strategies, which are referred to as Find and Fix, Defend and Defer, and Secure at the Source. Finally, the course looks at how changes in the way software is developed have created new challenges for application security.