SANS is the most trusted and by far the largest source for information security training and certification in the world. It also develops, maintains, and makes available at no cost, the largest collection of research documents about various aspects of information security, and it operates the Internet's early warning system - Internet Storm Center. We are proud to be a member of the SDL Pro Network, a group of security consultants and trainers that specialize in application security and have substantial experience and expertise with the methodology and of the SDL, the industry-leading software security assurance process.
Attacks are moving to the application layer and pose a significant threat to your customers and sensitive information. According to data collected by the Internet Storm Center, over 70% of attacks on networks originate in the application layer. A poorly developed application can open your system to attacks. Cyber criminals exploit the vulnerabilities that result from insecure coding:
The SDL Network was created to address the challenges developers are facing with the increasing shift of attacks to the application layer.
The SANS Software Security Institute (SSI) brings the most trusted name in information security to developers, programmers and application/software security professionals. Training for web application security and hacking, secure coding, software security testing, code review and PCI compliance:
SANS will work with organizations to deliver training to include the SDL via on-site classes.
SANS training is available in a variety of formats:
The Security Development Lifecycle (SDL) is the industry-leading software security assurance process created by Microsoft in 2004. It led to measurable security improvements in flagship products such as Windows Vista and SQL Server. With attacks moving to the application layer, the SDL is now more accessible to every developer in order to create more secure software. Visit the Microsoft SDL Pro Network to learn more.