When will I have access to the lectures and assignments?

To access the course materials, assignments and to earn a Certificate, you will need to purchase the Certificate experience when you enroll in a course. You can try a Free Trial instead, or apply for Financial Aid. The course may offer 'Full Course, No Certificate' instead. This option lets you see all course materials, submit required assessments, and get a final grade. This also means that you will not be able to purchase a Certificate experience.

What will I get if I purchase the Certificate?

When you purchase a Certificate you get access to all course materials, including graded assignments. Upon completing the course, your electronic Certificate will be added to your Accomplishments page - from there, you can print your Certificate or add it to your LinkedIn profile.

Is financial aid available?

Yes. In select learning programs, you can apply for financial aid or a scholarship if you can’t afford the enrollment fee. If fin aid or scholarship is available for your learning program selection, you’ll find a link to apply on the description page.

Cyber Secure Software Developer (CSSD) (Exam CSD-110)

Sparen Sie mit 40% Rabatt auf 3 Monate Coursera Plus bei den Fähigkeiten, die Sie zum Strahlen bringen. Jetzt sparen

kurs ist nicht verfügbar in Deutsch (Deutschland)

Wir übersetzen es in weitere Sprachen.

Cyber Secure Software Developer (CSSD) (Exam CSD-110)

Dozent: Bill Rosenthal

Bei enthalten

Mehr erfahren

9 Module

Verschaffen Sie sich einen Einblick in ein Thema und lernen Sie die Grundlagen.

4 Wochen zu vervollständigen

unter 10 Stunden pro Woche

Flexibler Zeitplan

In Ihrem eigenen Lerntempo lernen

9 Module

Verschaffen Sie sich einen Einblick in ein Thema und lernen Sie die Grundlagen.

4 Wochen zu vervollständigen

unter 10 Stunden pro Woche

Flexibler Zeitplan

In Ihrem eigenen Lerntempo lernen

Was Sie lernen werden

In this course, you will employ best practices to develop secure software.

Kompetenzen, die Sie erwerben

Kategorie: Security Requirements Analysis
Kategorie: Security Management
Kategorie: Application Security
Kategorie: Computer Security
Kategorie: Security Testing
Kategorie: Application Development
Kategorie: Network Security
Kategorie: Secure Coding
Kategorie: Software Design
Kategorie: Security Controls
Kategorie: AI Security
Kategorie: Computer Programming
Kategorie: Security Strategy
Kategorie: Cyber Security Assessment
Kategorie: Data Security
Kategorie: Information Systems Security
Kategorie: Cyber Security Strategy

Werkzeuge, die Sie lernen werden

Kategorie: Security Software
Kategorie: Python Programming
Kategorie: Open Web Application Security Project (OWASP)

Wichtige Details

Zertifikat zur Vorlage

Zu Ihrem LinkedIn-Profil hinzufügen

Kürzlich aktualisiert!

Mai 2026

Bewertungen

1 Aufgabe

Unterrichtet in Englisch

91% of learners achieved a positive career outcome

Erfahren Sie, wie Mitarbeiter führender Unternehmen gefragte Kompetenzen erwerben.

Weitere Informationen zu Coursera für Unternehmen

Logos von Petrobras, TATA, Danone, Capgemini, P&G und L'Oreal

In diesem Kurs gibt es 9 Module

The stakes for software security are high, and yet many development teams overlook it until it's too late—if they address it at all. To ensure successful implementation, it is crucial for developers to manage security and privacy issues throughout the entire software development lifecycle, rather than addressing them only after coding or during delivery preparation.

This course presents an approach for dealing with security throughout all phases of the software development lifecycle. You will identify the fundamentals of security, including the vulnerabilities and attacks that compromise it. You will also employ general strategies for addressing security risks to your software projects, as well as specific tactics for identifying and remediating those risks. Ultimately, you will acquire the skills it takes to secure all facets of a software project, beyond just the code itself. This course is designed for any business professional involved in the software development process who desires or is required to develop highly secure software for organizational use. Candidates may be programmers, testers, architects, or any other personnel whose daily job duties involve directly building software; or, they may be project leaders, software engineers, and DevOps personnel who perform additional technical and non-technical duties as part of the overall software development lifecycle. This course is also designed to assist candidates in preparing for the CertNexus Cyber Secure Software Developer™ (CSSD) Exam CSD-110 certification. In this course, you will: identify fundamental security concerns in software development, leverage the secure software development lifecycle (SSDLC), define secure software requirements, design software for security, implement security protections in software, test software security, maintain security in deployed software, and prepare to defend against cyber attacks. This course requires that you use the provided virtual machine, which includes various security tools and application environments. The course setup instructions provided in the first module of the course go into more detail about the hardware and software requirements.

Moduldetails

As a software developer, your job can be complex and demanding. You must satisfy customers, meet business requirements and deadlines, and work cooperatively with other people on a project—all while handling the complex technical challenges of rapidly evolving development tools, programming languages, frameworks, and application programming interfaces (APIs). The complex interactions among all of the components involved in a project can be difficult to manage at times.

Das ist alles enthalten

36 Plug-ins

36 Plug-insInsgesamt 371 Minuten

Data Files and Setup for This Course20 Minuten
About This Course3 Minuten
Lesson Introduction1 Minute
Topic A: Identify the Need for Software Security1 Minute
1A-1: Reading13 Minuten
1A-2: Activity15 Minuten
Topic B: Identify Factors That Undermine Software Security1 Minute
1B-1: Reading10 Minuten
1B-2: Activity10 Minuten
Topic C: Identify Fundamental Principles of Cybersecurity1 Minute
1C-1: Reading25 Minuten
1C-2: Activity30 Minuten
Topic D: Identify Common Vulnerabilities in Software1 Minute
1D-1: Reading10 Minuten
1D-2: Activity5 Minuten
1D-3: Reading10 Minuten
1D-4: Activity5 Minuten
1D-5: Reading5 Minuten
1D-6: Activity20 Minuten
1D-7: Reading15 Minuten
1D-8: Activity10 Minuten
1D-9: Reading2 Minuten
1D-10: Activity20 Minuten
Topic E: Identify Common Attacks and Exploits Against Software1 Minute
1E-1: Reading20 Minuten
1E-2: Activity5 Minuten
1E-3: Reading13 Minuten
1E-4: Activity5 Minuten
1E-5: Reading8 Minuten
1E-6: Activity5 Minuten
1E-7: Reading15 Minuten
1E-8: Activity30 Minuten
1E-9: Activity15 Minuten
1E-10: Activity10 Minuten
1E-11: Activity10 Minuten
Lesson Summary1 Minute

Software security is not a set of individual tasks isolated from other organizational concerns. Instead, it is a repeatable process with several stages, much in the same way that software development itself follows a lifecycle. In this lesson, you'll follow and apply the stages of this lifecycle with a focus on security, ensuring your software projects are protected at a high level.

Das ist alles enthalten

33 Plug-ins

33 Plug-insInsgesamt 291 Minuten

Lesson Introduction1 Minute
Topic A: Apply the Builder/Breaker Approach1 Minute
2A-1: Reading20 Minuten
2A-2: Guidelines2 Minuten
2A-3: Activity5 Minuten
Topic B: Incorporate SSDLC Practices and Methodologies1 Minute
2B-1: Reading13 Minuten
2B-2: Activity5 Minuten
2B-3: Reading15 Minuten
2B-4: Activity5 Minuten
2B-5: Reading20 Minuten
2B-6: Guidelines5 Minuten
2B-7: Activity10 Minuten
Topic C: Apply SSDLC Practices in the Use of AI1 Minute
2C-1: Reading25 Minuten
2C-2: Activity5 Minuten
2C-3: Reading13 Minuten
2C-4: Activity5 Minuten
2C-5: Reading20 Minuten
2C-6: Guidelines3 Minuten
2C-7: Activity15 Minuten
Topic D: Incorporate Governance, Risk Management, and Compliance (GRC) in the SSDLC1 Minute
2D-1: Reading15 Minuten
2D-2: Guidelines2 Minuten
2D-3: Activity10 Minuten
Topic E: Identify Key Roles in the SSDLC1 Minute
2E-1: Reading20 Minuten
2E-2: Activity15 Minuten
Topic F: Foster a Security-First Organizational Culture1 Minute
2F-1: Reading20 Minuten
2F-2: Guidelines5 Minuten
2F-3: Activity10 Minuten
Lesson Summary1 Minute

You've implemented different processes in the secure software development lifecycle (SSDLC), now it's time to go into depth for each phase of the lifecycle. As you know, the first phase is requirements definition and analysis. In this lesson, you'll explore some of the major sources of requirements and how best to define those requirements so that they meet your security needs.

Das ist alles enthalten

14 Plug-ins

14 Plug-insInsgesamt 89 Minuten

Lesson Introduction1 Minute
Topic A: Define Compliance Requirements1 Minute
3A-1: Reading7 Minuten
3A-2: Activity5 Minuten
3A-3: Reading30 Minuten
3A-4: Activity5 Minuten
3A-5: Reading8 Minuten
3A-6: Guidelines2 Minuten
3A-7: Activity5 Minuten
Topic B: Define Security Requirements1 Minute
3B-1: Reading2 Minuten
3B-2: Guidelines6 Minuten
3B-3: Activity15 Minuten
Lesson Summary1 Minute

The process you use to design your software should reflect what is important to you, your customers, and other project stakeholders. Following this rationale, if software security is important to you, it should be an important part of your design processes. In this lesson, you'll move on to the second phase of the secure software development lifecycle (SSDLC) to incorporate security into the design of software.

Das ist alles enthalten

18 Plug-ins

18 Plug-insInsgesamt 227 Minuten

Lesson Introduction1 Minute
Topic A: Apply General Principles for Secure Design1 Minute
4A-1: Reading35 Minuten
4A-2: Guidelines2 Minuten
4A-3: Activity20 Minuten
Topic B: Define the Security Architecture1 Minute
4B-1: Reading25 Minuten
4B-2: Activity10 Minuten
4B-3: Reading35 Minuten
4B-4: Guidelines2 Minuten
4B-5: Activity5 Minuten
Topic C: Conduct Threat Modeling1 Minute
4C-1: Reading40 Minuten
4C-2: Activity10 Minuten
4C-3: Reading25 Minuten
4C-4: Guidelines3 Minuten
4C-5: Activity10 Minuten
Lesson Summary1 Minute

You've outlined security requirements and designed your software around security. The next phase of the secure software development lifecycle (SSDLC) is development, where you actually implement security protections through code. And, as part of a DevOps approach, you'll also implement protections that support your code and your software's runtime environments.

Das ist alles enthalten

36 Plug-ins

36 Plug-insInsgesamt 479 Minuten

Lesson Introduction1 Minute
Topic A: Implement Cryptography1 Minute
5A-1: Reading30 Minuten
5A-2: Activity30 Minuten
5A-3: Activity10 Minuten
5A-4: Reading20 Minuten
5A-5: Activity8 Minuten
5A-6: Reading18 Minuten
5A-7: Guidelines5 Minuten
5A-8: Activity15 Minuten
5A-9: Activity15 Minuten
5A-10: Activity25 Minuten
5A-11: Activity20 Minuten
Topic B: Implement Application Security Parameters and Configurations1 Minute
5B-1: Reading25 Minuten
5B-2: Guidelines3 Minuten
5B-3: Activity20 Minuten
5B-4: Activity15 Minuten
Topic C: Implement Access Control1 Minute
5C-1: Reading18 Minuten
5C-2: Activity7 Minuten
5C-3: Reading20 Minuten
5C-4: Guidelines13 Minuten
5C-5: Activity15 Minuten
5C-6: Activity20 Minuten
Topic D: Protect Database Access1 Minute
5D-1: Reading30 Minuten
5D-2: Guidelines3 Minuten
5D-3: Activity15 Minuten
5D-4: Activity20 Minuten
Topic E: Implement Error Handling and Logging1 Minute
5E-1: Reading10 Minuten
5E-2: Guidelines7 Minuten
5E-3: Activity15 Minuten
5E-4: Activity20 Minuten
Lesson Summary1 Minute

As you design and implement software throughout the entire software development lifecycle, you need to test it to ensure it will lead to a high-quality finished product that is secure and protects both users and the organization. There are various approaches to testing, several of which you'll employ in this lesson.

Das ist alles enthalten

18 Plug-ins

18 Plug-insInsgesamt 184 Minuten

Lesson Introduction1 Minute
Topic A: Perform Security Tests1 Minute
6A-1: Reading40 Minuten
6A-2: Guidelines3 Minuten
6A-3: Activity35 Minuten
6A-4: Activity20 Minuten
Topic B: Analyze Software to Identify Security Issues1 Minute
6B-1: Reading3 Minuten
6B-2: Guidelines2 Minuten
6B-3: Reading3 Minuten
6B-4: Guidelines2 Minuten
6B-5: Reading10 Minuten
6B-6: Guidelines2 Minuten
6B-7: Reading3 Minuten
6B-8: Guidelines2 Minuten
6B-9: Activity15 Minuten
6B-10: Activity40 Minuten
Lesson Summary1 Minute

You've designed, developed, and tested your software. Now you must make sure it remains secure when deployed to production. And, you must ensure that security extends over time, performing fixes as needed. In this lesson, you'll engage with the final two phases of the secure software development lifecycle (SSDLC).

Das ist alles enthalten

36 Plug-ins

36 Plug-insInsgesamt 284 Minuten

Lesson Introduction1 Minute
Topic A: Implement Secure Deployment Processes1 Minute
7A-1: Reading6 Minuten
7A-2: Guidelines3 Minuten
7A-3: Reading3 Minuten
7A-4: Guidelines2 Minuten
7A-5: Reading3 Minuten
7A-6: Guidelines2 Minuten
7A-7: Reading7 Minuten
7A-8: Activity30 Minuten
7A-9: Activity20 Minuten
Topic B: Ensure Device Security1 Minute
7B-1: Reading18 Minuten
7B-2: Guidelines2 Minuten
7B-3: Activity8 Minuten
Topic C: Monitor Deployed Software1 Minute
7C-1: Reading15 Minuten
7C-2: Guidelines2 Minuten
7C-3: Activity20 Minuten
7C-4: Activity25 Minuten
Topic D: Maintain Security After Deployment1 Minute
7D-1: Reading8 Minuten
7D-2: Guidelines3 Minuten
7D-3: Reading3 Minuten
7D-4: Guidelines2 Minuten
7D-5: Reading3 Minuten
7D-6: Guidelines2 Minuten
7D-7: Activity30 Minuten
7D-8: Activity25 Minuten
Topic E: Decommission Legacy Assets1 Minute
7E-1: Reading10 Minuten
7E-2: Guidelines3 Minuten
7E-3: Reading6 Minuten
7E-4: Guidelines3 Minuten
7E-5: Activity13 Minuten
Lesson Summary1 Minute

As a software developer, you may not think of yourself as being on the frontlines of cybersecurity within an organization. After all, there are security practitioners whose job it is to be vigilant against active attacks. Even though you may not implement cybersecurity defenses yourself, you must still be aware of them and why they're necessary to ensure the security of the entire organization—software included. This is crucial in supporting a truly effective DevSecOps approach.