WorkshopSecurityOpen seminar

Security Advanced: Proven Practices for Software Implementations

Practical Secure Coding: Identifying Vulnerabilities Early and Meeting Requirements from CRA, ISO 21434, and IEC 62443

Duration:
1 day
Price:
from €550 excl. VAT

This workshop provides practical knowledge on secure software development (“secure coding”) and raises awareness of typical attack vectors, sources of errors, and vulnerabilities in the development process.

Enhancing the security expertise of developers and architects
Reducing security-related vulnerabilities early in the development phases
Building a shared understanding of security responsibilities within the team
Directly contributing to compliance with regulatory requirements (e.g., CRA, ISO/SAE 21434, IEC 62443)
Strengthening the security culture within the company

Objectives and Benefits

You will learn how to effectively implement security requirements, identify and mitigate risks, and embed security into architecture and code.
The format combines knowledge transfer, discussion, code examples, and hands-on exercises.

Agenda

  • Introduction to the fundamental principles of software security (CIA triad, Secure Development Lifecycle, Shift Left, Security by Design)
  • Common vulnerabilities in software projects (e.g., OWASP Top 10, memory safety, input validation, authentication/authorization, logging)
  • Analysis of real-world case studies from the customer environment or from known CVEs
  • Hands-on exercises on:
    • Identifying and fixing insecure code sections
    • Handling external libraries and dependencies
    • Securing interfaces (API Security Basics)
  • Presentation of relevant standards and guidelines (e.g., IEC 81001-5-1, ISO/SAE 21434, IEC 62443-4-1, OWASP ASVS)
  • Recommendations on tools and methods (static code analysis, dependency checking, threat modeling)
  • Closing Discussion: Lessons Learned, Deriving Improvement Measures for the Development Process

Target Audience

Software developers (embedded, backend, frontend), software and system architects, technical leads, and security champions

Prerequisites

Basic knowledge of software development (C/C++, Python, Java, or similar)

Request this training

Send us a short note — we get back within one business day.

Diese Seite ist durch reCAPTCHA geschützt; es gelten die Datenschutzerklärung und Nutzungsbedingungen von Google.

← All trainings