defdev secure development trainings are designed to significantly improve the security quality of the software production by mastering secure coding skills and through adopting sticky development practices that systematically reduce defects.
The European defensive development (defdev.eu) project provides public and private (and hybrid, aka hosted) trainings for software development companies. We do secure development and security testing courses and also trainings to improve secure devops and SDLC processes.
We offer the following standard secure development courses:
We also offer secdev courses in Kotlin, Python, Node.js and PHP. Please check back later. Subscribe to our twitter @defdeveu for updates and announcements.
Our secdev courses are mostly structured around the
OWASP ASVS (or MASVS), and we promote CMU/SEI guidelines where possible.
Also check out the extra addons in a below section which can greatly expand the impact of the course.
The lectures are mixed with cloud-hosted exercises and many DIY tasks, we also use gamification approach in education. We flex the actual delivery according to the audience on the fly, adapting the scope and the depth of different topics indicated in the course agendas. Read more about our practices and approach:
Our trainers are practitioners with authority and have years of experience in enterprise software production: such as security testers who are good at coding or senior developers who learnt security testing and S-SDLC.
Clients/visitors of public and private defdev [and also secmachine] trainings were/are: LogMeIn/LastPass/GoToMeeting/Boldchat, Ustream, JKU Institute für Netzwerke und Sicherheit, Siemens/evosoft, Nokia, GE Healthcare, Opera Software, SAP, Balabit, AEGON, KBC/KH Hungary, Ocado.