2081 Other courses in London delivered Live Online

Duration 5 Days 30 CPD hours This course is intended for The primary audience for this course is as follows: • Cisco Unified Communications system channel partners and resellers who are responsible for sales, implementation or administration of a Cisco Unified Contact Center. • System and technical support engineers. • Day 1 and Day 2 support personnel. • Administrative and reporting personnel. Overview Upon completing this course, the learner will be able to meet these overall objectives: • Understand the Cisco Unified CCE solution, architecture, solution options, integrated features, and call flow options. • Understand basic principles and configuration requirements for ACD activity in Cisco Unified CM, Cisco Unified CVP, ICM, and how to access and use the Cisco Finesse Agent Desktop. • Understand requirements and configurations to implement IVR activity in Cisco Unified CVP. • Understand and use administrative features and functions of ICM and implement more complex routing to include Precision Routing, routing from Cisco Unified Communications Manager and routing in a ring-no-answer condition. • Understand basic concepts and terms to access, view, modify reports and use other reporting functions provided by Cisco Unified Intelligence Center. Helps prepare learners to administer the Cisco Unified CCE v11.5 solution. Cisco Unified Contact Center Enterprise Overview Lesson 1: Presenting Cisco Unified Contact Center Enterprise Lesson 2: Cisco Unified CCE Core Components Lesson 3: Cisco Unified CCE Options Lesson 4: Basic Call Flow Models Basic ACD Configurations Lesson 1: Configuring Cisco Unified Communications Manager Lesson 2: Configuring Cisco Unified CVP Lesson 3: Configuring Cisco Unified CCE Lesson 4: Using Cisco Finesse Lesson 5: Using Cisco Unified CCE Script Editor Configuring Cisco Unified CVP for IVR Functionality Lesson 1: Basic IVR Configurations Lesson 2: Basic IVR Scripting using CVP Micro-Applications Extended Functions Lesson 1: ICM User Accounts and Feature Control Sets Lesson 2: Using ICM Utilities Lesson 3: Understanding ICM Variables Lesson 4: Precision Routing Lesson 5: Routing Calls from Cisco Unified CM Lesson 6: Ring-No-Answer Routing Cisco Unified CCE Reporting Lesson 1: Introducing Cisco Unified Intelligence Center Lesson 2: Running and Modifying CUIC Reports Lesson 3: Creating CUIC Reports and Dashboards

Duration 2 Days 12 CPD hours This course is intended for Application Consultant Business Analyst Business Process Architect Business Process Owner / Team Lead / Power User Developer Enterprise Architect Solution Architect Trainer Overview This course will prepare you to: Understand the basic concepts of SAP data warehousing Position the value-added of SAP Data Warehouse Cloud Integrate on-premise SAP Sources Model in SAP Data Warehouse Cloud Consume Data in SAP Analytics Cloud This course will prepare you to:Understand the basic concepts of SAP data warehousingPosition the value-added of SAP Data Warehouse CloudIntegrate on-premise SAP SourcesModel in SAP Data Warehouse CloudConsume Data in SAP Analytics Cloud Course Outline Getting started with data warehousing and the training environment Short introduction in SAP BW Bridge and other sources SAP Data Warehouse Cloud: -Introducing SAP Data Warehouse Cloud -Describing Spaces, integration options, operations and best practices -Introducing modeling in the Data Builder -Introducing modeling the Business Layer Describing consumption options in SAP Analytics Cloud Additional aspects in SAP Data Warehouse Cloud Outlook and roadmap Additional course details: Nexus Humans DSP01 SAP Introduction to SAP Data Warehouse Cloud training program is a workshop that presents an invigorating mix of sessions, lessons, and masterclasses meticulously crafted to propel your learning expedition forward. This immersive bootcamp-style experience boasts interactive lectures, hands-on labs, and collaborative hackathons, all strategically designed to fortify fundamental concepts. Guided by seasoned coaches, each session offers priceless insights and practical skills crucial for honing your expertise. Whether you're stepping into the realm of professional skills or a seasoned professional, this comprehensive course ensures you're equipped with the knowledge and prowess necessary for success. While we feel this is the best course for the DSP01 SAP Introduction to SAP Data Warehouse Cloud course and one of our Top 10 we encourage you to read the course outline to make sure it is the right content for you. Additionally, private sessions, closed classes or dedicated events are available both live online and at our training centres in Dublin and London, as well as at your offices anywhere in the UK, Ireland or across EMEA.

Key Objectives for the Training provision Effective listening to a client's needs and requirements during various stages of the sales process. Engage in meaningful communication with clients, learn to identify challenges and opportunities that relate to the prospects. Overcome the identified challenge. Build long term rapport and establish trust with the prospect throughout the sales process, Ensure continued customer satisfaction that can turn into repeat business. Be able to build rapport with customers or clients. Know the right questions to ask to fully understand the customer or client’s needs without putting on any pressure. Be able to check you have the right information from the customer or client. Be able to match products and services to the customer or client using the information you have gathered. Be able to influence effectively. Know how to stand out from your competitors. Stage 1 – Research the Company’s ‘Value Propositions’ and USP Analysis  Conducting 30 min confidential interviews with a cross-section of the eligible Attendees & the Stakeholders, in order to gain an objective understanding of the various scenarios and clients that the Participants work with. the Company’s ‘Value Propositions’ Unique Selling Points The Customers’ journey(s) The Competition’s offers for analysis and comparisons. From these findings, a carefully calibrated bespoke Programme will be designed and delivered.  Stage 2 - Design the Bespoke 2 x day Course  nd Stage 3 - Delivery of the Course Programme This Programme can be delivered in 2 x consecutive days, or split between 2 – 3 weeks, to make it more ‘work-friendly’ – if required. It is very practical and commercially focussed in approach, with lots of interactive exercises designed to draw out the learning applications via the debriefings. The ‘Real Play’ scenarios on day 2 will be based on specific case studies drawn from the Research findings so that they are authentic to optimise the learning. Individual Action Plans will be captured at the end of each day to be debriefed by the Participants’ respective Line Managers.  Template Programme Day One – Foundation – Strategic Approach Section One – The Principles of Consultative Selling Defining ‘Consultative Selling’ The Company’s ‘Unique Selling Points’ & Value Proposition The Consultative Selling model – the five stages Avoiding appearing ‘pushy’, ‘pressurising’ or ‘talking through the sale’ Section Two –Strategy & Preparation  ‘Buy-Class’ Matrix Strategic plan Template – matching services/products to identified needs & opportunities. Preparing a range of objectives Constants and variables – USP’s Researching key Client/Decision Makers’ priorities, profile & background (LinkedIn etc.) Preparing for potential & likely Objections Section Three – Email etiquette & ‘influencing’ email correspondence.  Email etiquette A.B.S.U.R.D model Clarity and tone – discovery of clients’ needs & motivational factors. Techniques to influence and ‘nudge’. Ensuring the data and content have a ‘gentle’ motivational & appealing message. Top Tips Day Two – Practical Application Section Four – Rapport Building & Effective Communication skills ‘Behaviour Labelling’ techniques – setting a positive tone. Asking Open Questions – gaining a full understanding of the clients’ priorities & expectations. EQ - Inviting opinions; perspectives; experiences – winning confidence. Active Listening – focus and commitment to understand. ‘Reading the room’ – adapting to responses and reactions. Maintaining focus on relevant topics that the Client cares about; carefully consider the opportunities to influence. But NO PRESSURE! Building a ‘bond of trust’ with commitments and authentic, shared values. Section Five – Explaining the Benefits – aligned to the Customers’ Priorities Understanding ‘Why do People Buy?’ Research data analysis. Open questions that lead to understanding the key issues and Clients’ priorities. Avoiding the danger of ‘pressurising’ the Client. Responding to objections effectively, with confidence and sensitivity. Explaining the benefits that are aligned to the Clients’ stated requirements. Making the Data ‘sing’ – memorable takeaways for the Client. Augmented benefits – Brand confidence; Case studies; Warranty; Service; Range; Flexibility etc. in alignment with their stated preferences/requirements Differentials compared to Competitors Section Six – Winning Commitment Inviting commitment – with confidence Consultative Selling Closing techniques (e.g. Alternative Close/Assumptive Close et al) Avoiding ‘talking through the sale’ – knowing when to ‘Shut UP!’ Confirming agreement – ensuring Clients’ motivation for repeat business Section Seven – Practical Application ‘Real Play’ From the Research findings, carefully devised scenarios can be generated to provide the most valuable learning opportunities to underpin all the skills & techniques covered in the Programme.  Potential Real Play scenarios: A well-established customer has indicated that they are soon to be opening up additional new offices – this presents an opportunity to arrange for the Company to support them with their upcoming needs. After some very positive feedback and with the upcoming contract renewal imminent – how can the Company give the Customer more high-quality support in other areas of their business? A Competitor has been to see the client and they have prompted some concerns about ‘value for money’ & ‘quality of service’. How Real Play works… The group is split the group into 2 sub-groups, one with our Professional Actor (option available); the other with the Trainer or a willing Participant. Each group has a brief and has to instruct their Trainer/Actor/Participant on how to approach the scenario supplied. The Actor and Trainer (or willing Participant) perform the role play(s) as instructed by their respective teams; however, during the action they can be paused for further recommendations or direction. The outcome is the responsibility of the team(s) – not the performers. Debrief the full Programme Individual Action Plans - to be followed through. ‘Best Practices’ for application into the business Options for Exercises within the Programme  Sample Exercise – Red & White  There is a specific time managed agenda and itinerary, which puts the group under pressure.  The key challenge is for the sub-groups to maximise the commercial value from the task, however there is always a great danger that the individuals attempt to gain financial progress at the expense of the other group! Debriefing points: Persuasive communication and influence across barriers Gaining buy-in when others are sceptical Strategic planning accounting for others’ behaviours Sample Exercise – Communication Challenge Each Participant has different pieces of information, but are not allowed to share it visually. They are only allowed to communicate to work out the solution hidden among the large amount of data. Debrief: Structured approach Maintaining focus through distractions/interference Active Listening Controlled communication Sample Exercise – Persuasive emails Sample emails are shared to be critiqued and improved upon to be debriefed: Tone & impact Making the Data ‘sing’ Influential & motivational language Customer centric message. Sample Exercise –Juggling   Each Participant has to pass the ‘Customers’ (Juggling balls) carefully through the system with all the other Participants to reach a profitable conclusion  Debrief: EQ to read the room and effectively communicate, when the pressure is on Customer focus and adapting to challenges Devising a plan that wins buy-in Overcoming competing ideas to get to ‘best practice’ Consistent commitment, communication and motivational drivers that influenced performance. Sample Exercise –Critical Path  The group are provided with 30 x discs and some ‘post-it’ notes. (no pens or pencils are allowed) Their brief is to create a grid shape with the 30 x discs, which will act as ‘stepping stones’ for the ‘Critical Path’ But they have to follow the correct order through the grid from the start to finish, which they will have to work out through ‘trial & error’ All of the team must pass through the ‘Critical Path’ worked out on the grid, observing the constraints, within the time limit. No talking is permitted once they start using the materials Debrief: - Clear communication focussing on the ‘client’s journey’ Planning for challenges Identifying risks and mitigating them Role allocations & support Quality control and disciplines  Sample Exercise –Back to Back  Each Participant is positioned back-to-back with a partner. They have to work out precisely what the ‘statement’ given to the other person is without looking around. Each person has a different brief. Debrief: - Asking Open Questions Active Listening Accuracy in identifying the objective.

To provide a fundamental understanding of building services in the context of: The working environment The success of the core business The health and safety of the occupants Operating cost and environmental impact The optimisation of cost and value Strategies for continuous improvement DAY ONE 1 Building services fundamentals The function of services in commercial buildings and their importance to the core businessElectrical servicesLightingHeatingVentilation and air conditioningLiftsWater Understanding IT and communication systems Practical exercises 2 The provision of comfort and safety Statutory requirementsHealth and safety legislationControl of contractorsRisk assessmentFire precautionsLegionella, sick building and other risks Business requirementsUnderstanding user requirementsMatching systems to business needs Practical exercises 3 Getting the design right What the FM needs to know about design and its procurementSuccessful space planningRelationship between services, space planning and designGetting the brief rightSupplier selection and management Practical exercises DAY TWO 4 Operation and maintenance Why maintain?Maintenance contractsInput and output specificationsResource optionsContracts - principal elementsTendering - key stepsSelection criteriaOperational criteriaMaintenance trends Performance-based service provisionInput and output specificationsKPIs and thresholdsRisk containmentValue-add opportunitiesPerformance contract strategy Practical exercises 5 Contingency planning Being ready for the unexpected Identifying and reducing riskInternal risksExternal risksIdentifying threats at your site Managing riskProtective systemsOccupier obligationsFire managementTesting Practical exercises 6 Commissioning services systems Physical commissioning Common problems Typical costs Commissioning stages Continuous commissioning Energy efficiency and the scope for environmental improvement Practical exercises 7 Satisfying the occupants Obtaining and responding to feedbackWhen to get feedbackWhyHowWhat to do with it Practical exercises 8 'Air time' Sharing experience and addressing specific issues of interest to participants Course review Close

AAT Level 4 Professional Diploma in Accounting AAT Level 4 is the highest level or final stage of the AAT Accounting qualification. This qualification provides the skills necessary for a 'Finance Officer' role including the complex management accounting tasks, general management skills, drafting financial statements and specialist learning areas. This provides you with an opportunity to become a professional member of AAT and use MAAT after your name. You are also entitled to exemptions in the UK's chartered and certified accounting qualifications. Besides, if you want to pursue your career further in University, you are entitled to exemptions for up to two years in various universities in the UK. You will be awarded “AAT Level 4 Professional Diploma in Accounting certificate” from the Association of Accounting Technicians (AAT), once you have passed all the professional-level qualification exams and skill tests. Once you finish Level 4 you become a professional member of AAT and you may use MAAT after your name to stand out from the crowd as an officially Accredited Accountant. What you will gain? Here you'll learn how to draft financial statements for limited companies, perform complex management accounting tasks and develop your own management skills, perform tax calculation for business & individuals and other specialist learning areas. The Level 4 Professional Diploma in Accounting covers the following areas: Management Accounting: Budgeting Management Accounting: Decision and Control Financial Statements of Limited Companies Accounting Systems and Controls Business Tax Personal Tax

VC funding, tech startups, tech valuation, valuation, fund raising, pitch deck, investor data room, cash flow and modeling, VC interviews, how to break into VC, VC funding, angel funding

Duration 5 Days 30 CPD hours This course is intended for Implementers and administrators who have experience with IBM Spectrum Protect. Overview After completing this course, you should be able to: Describe a multi-server IBM Spectrum Protect storage environment. Manage storage containers and traditional storage pools. Configure a multi-server environment. Improve data protection and recovery with replication. Enable advanced client functions. Protect and monitor the IBM Spectrum Protect environment. Use scripting to automate daily processing. Optimize the IBM Spectrum Protect server and client. Troubleshoot common problems. Describe the other IBM Spectrum Protect family products. IBM Spectrum Protect, formerly known as IBM Tivoli Storage Manager, is a data backup and recovery solution designed to help you manage your data retention, reduce the cost of storage, and provide appropriate recovery point objectives to meet any service level agreement. IBM Spectrum Protect offers improved efficiency and flexibility using objectbased data management, policy-driven retention, and an easy to use interface, the Operations Center.In this advanced-level course, you streamline your daily operations with the latest features, such as using Retention Sets for data retention, and using the Web Client 2.0 to restore data. You use the Operations Center and administrative command line to manage multiple IBM Spectrum Protect servers and nodes. This course also includes scripting, performance tuning, restoring the database and storage, and an overview of integration with IBM Spectrum Protect Plus 10.1.6. The hands-on exercises are performed on two Windows 2016 R2 virtual machines.This course is the second in a two-course series. It is for storage administrators familiar with the daily management of IBM Spectrum Protect, and focuses on the latest features, such as container pool storage. Basic concepts and installation are not covered in this course. TS618G, the first course in the series, IBM Spectrum Protect 8.1.9 Implementation and Administration, covers basic administration and installation. Unit 1 The IBM Spectrum Protect 8.1.11 environment Unit 2 Storage pool management overview Unit 3 Multi- server management Unit 4 Recovery and long-term retention Unit 5 Client functions and management Unit 6 Daily maintenance and monitoring Unit 7 Automation and scripting Unit 8 Tuning the server and client for optimization Unit 9 Troubleshooting and recovery

Duration 3 Days 18 CPD hours This course is intended for CliniciansUniversitiesHospitalsHealthcare ExecutivesEntrepreneursInvestors Overview Intro to blockchainMajor healthcare use cases of blockchainUnderstand different use cases of PEB that have already been implemented and encourage thought of new potential use cases. This course covers the intersection of healthcare and Blockchain. Training will include an overview of Blockchain, and uses for Blockchain in the healthcare industry, from medical records, to medical devices, insurance and more. Day 1 History of blockchain Blockchain 101 Decentralization/centralization Distributed ledger-private vs public Mining and consensus mechanisms Intro to healthcare on blockchain including Medical records FHIR, HL7 Day 2 Patient identity Value-based care and concepts (discuss outcome-based smart contracts) Medical devices, Wearables, IoT Patient adherence monitoring (with tokenized incentives-could also discuss with pt. empowerment), incentives, etc. Interoperability and other obstacles of implementation (industry inertia, large data sets, inherent resistance to change) Day 3 Supply chain (substandard and falsified medicines, divergence, compliance with DSCSA) Logistics Insurance (eligibility, reduced overhead, claims processing) Data sets AI technology (theoretical use cases) PT empowerment 1 & 2 (digital health wallet with access driven by smart contracts, monetizing data for sharing) Additional course details: Nexus Humans Blockchain for Healthcare Professionals training program is a workshop that presents an invigorating mix of sessions, lessons, and masterclasses meticulously crafted to propel your learning expedition forward. This immersive bootcamp-style experience boasts interactive lectures, hands-on labs, and collaborative hackathons, all strategically designed to fortify fundamental concepts. Guided by seasoned coaches, each session offers priceless insights and practical skills crucial for honing your expertise. Whether you're stepping into the realm of professional skills or a seasoned professional, this comprehensive course ensures you're equipped with the knowledge and prowess necessary for success. While we feel this is the best course for the Blockchain for Healthcare Professionals course and one of our Top 10 we encourage you to read the course outline to make sure it is the right content for you. Additionally, private sessions, closed classes or dedicated events are available both live online and at our training centres in Dublin and London, as well as at your offices anywhere in the UK, Ireland or across EMEA.

Duration 5 Days 30 CPD hours This course is intended for This course is designed for programmatic developers looking to write programmatic customizations to both business logic and UI layers using Apex and Visualforce. You should have a good understanding of core object-oriented programming concepts and experience building declarative solutions on the Salesforce Platform. This course is also a great foundation builder if you're looking to earn your Salesforce Platform Developer I credential. IMPORTANT: Students are expected to follow the steps detailed in the Computer Set-up Guide for this class if you'll be using your own computer when attending a virtual or in-person class. Overview Learn modern tools for developing on the Salesforce Platform using Visual Studio Code, the Salesforce Extension Pack, and the Salesforce CLI. Write business logic customizations using Apex triggers and classes; those customizations will use SOQL and DML. Design programmatic solutions that take advantage of declarative customizations. Describe how your trigger code works within the basics of the Save Order of Execution. Describe some of the fundamental aspects of designing programs on a multi-tenant platform. Write Visualforce markup and code to customize the user interface. Use the built-in testing framework to test Apex and Visualforce. Learn how to customize and design applications programmatically on the Salesforce Platform. In this 5-day class, our platform experts will introduce you to Apex (Salesforce?s programming language) and Visualforce markup, so you can customize your Salesforce applications using code and explore how Apex interacts with declarative customizations on the platform. Learn how to retrieve, manipulate, and store data programmatically in data objects (sObjects), write and test custom logic, write Visualforce pages to customize your user interface, and deploy your solutions to another environment. Get an overview of the declarative automation tools available on the platform and a brief introduction to the Lightning Component framework. Plus, explore the nuances of working on a multi-tenant platform so you can extend the platform to meet business demands. Declarative Automation Create Formula Fields Create Roll-Up Summary Fields Understand Record Types Review Other Automation Tools Build a Data Model on the Salesforce Platform Programming with Apex Describe Key Aspects of Apex That Differentiate It from Other Languages, Such as Java and C# Describe Why Apex Transactions and Governor Limits Must Be Considered When Writing Apex Execute Simple Apex Use the sObject Data Type, the Primitive Data Types, and Basic Control Statements in Apex Using SOQL and SOSL to Retrieve Your Org?s Data Write a Basic Query Using Salesforce?s Query Language, SOQL Process the Result of a Query in Apex Create a Query Dynamically at Run-Time Use SOQL to Query Parent-Child Relationships Describe a Relationship Query Write a Query That Traverses a Child-to-Parent Relationship Write a Query That Traverses a Parent-to-Child Relationship Use SOSL to Search Data Using DML to Manipulate Your Org?s Data List the Differences Between the Ways You Can Invoke DML Operations Write Apex to Invoke DML Operations and Handle DML Errors Deployment What Is Deployment? Deploy Code Using Change Sets Use the Ant Migration Tool Review Managed and Unmanaged Packages Explore Salesforce DX Trigger Essentials Describe What a Trigger Is Used For Describe the Syntax of a Trigger Definition Use Trigger Context Variables Apex Class Essentials Describe How Apex Classes Are Used Define an Apex Class Determine What Data an Apex Class Can Access The Save Order of Execution, Apex Transactions, and Platform Events Describe Key Points in the Order of Execution Describe How Triggers Fit Into and Can Be Impacted by the Order of Execution Describe the Lifecycle of an Apex Transaction Describe the Memory Lifecycle for Static Attributes Use Platform Events for Immediate Error Logging Apex Testing Describe the Apex Testing Framework Create Test Data Write and Run an Apex Test Test Best Practices Strategies for Designing Efficient Apex Solutions Describe Best Practices for Writing Code That Is Easy to Maintain and Extend Write Triggers and Classes That Assume Batches of Data as Input Write Code That Works Efficiently with the Database, Both in Querying and Using DML Trigger Design Strategies List Declarative Mechanisms You Can Use to Implement Complex Business Logic, What Types of Problems They?re Best Used for, and Their Limitations Describe Ways in Which You Can Use Declarative Functionality to Improve Your Programmatic Solutions Working with Visualforce Create a Visualforce Page Reference a Standard Controller Launch a Visualforce Page Using a Custom Button Display Data from a Record in a Visualforce Page Reference Custom Controllers and Controller Extensions Work with List Controllers Visualforce Development Considerations and Testing Describe Common Limit Issues and Security Concerns Describe Strategies for Testing Visualforce Controllers Write Tests for Controller Constructors Write Tests for Action Methods, Getters, Setters, and Properties Lightning Components Create and Surface an Aura Component Create and Surface a Lightning Web Component Additional course details: Nexus Humans Salesforce Build Applications Programmatically on the Salesforce Platform (DEX450) training program is a workshop that presents an invigorating mix of sessions, lessons, and masterclasses meticulously crafted to propel your learning expedition forward. This immersive bootcamp-style experience boasts interactive lectures, hands-on labs, and collaborative hackathons, all strategically designed to fortify fundamental concepts. Guided by seasoned coaches, each session offers priceless insights and practical skills crucial for honing your expertise. Whether you're stepping into the realm of professional skills or a seasoned professional, this comprehensive course ensures you're equipped with the knowledge and prowess necessary for success. While we feel this is the best course for the Salesforce Build Applications Programmatically on the Salesforce Platform (DEX450) course and one of our Top 10 we encourage you to read the course outline to make sure it is the right content for you. Additionally, private sessions, closed classes or dedicated events are available both live online and at our training centres in Dublin and London, as well as at your offices anywhere in the UK, Ireland or across EMEA.

Duration 2 Days 12 CPD hours This course is intended for The intended audience for this comprehensive course on Information Assurance and STIGs includes professionals with roles such as: IT professionals - System administrators, network engineers, and security analysts who are responsible for maintaining and securing IT infrastructure and web applications. Developers - Software engineers and web developers who design, implement, and maintain web applications, and need to integrate security best practices throughout the development process. Project teams - Cross-functional teams that collaborate on application development projects, including members from development, testing, and deployment teams. Technical leads - Senior software engineers or architects who oversee technical aspects of projects and ensure the implementation of secure design and coding practices. Project managers - Professionals responsible for planning, executing, and closing projects, ensuring that security requirements are met throughout the project lifecycle. Overview Working in an interactive learning environment, guided by our application security expert, you'll explore: The concepts and terminology behind defensive coding Threat Modeling as a tool in identifying software vulnerabilities based on realistic threats against meaningful assets The entire spectrum of threats and attacks that take place against software applications in today's world The role that static code reviews and dynamic application testing to uncover vulnerabilities in applications The vulnerabilities of programming languages as well as how to harden installations The basics of Cryptography and Encryption and where they fit in the overall security picture The requirements and best practices for program management as specified in the STIGS The processes and measures associated with the Secure Software Development (SSD) The basics of security testing and planning Understand the concepts and terminology behind defensive coding Understand Threat Modeling as a tool in identifying software vulnerabilities based on realistic threats against meaningful assets Learn the entire spectrum of threats and attacks that take place against software applications in today's world Discuss the role that static code reviews and dynamic application testing to uncover vulnerabilities in applications Understand the vulnerabilities of programming language as well as how to harden installations Understand the basics of Cryptography and Encryption and where they fit in the overall security picture Understand the fundamentals of XML Digital Signature and XML Encryption as well as how they are used within the web services arena Understand the requirements and best practices for program management as specified in the STIGS Understand the processes and measures associated with the Secure Software Development (SSD) Understand the basics of security testing and planning The Information Assurance (STIG) Overview is a comprehensive two-day course that delves into the realm of Information Assurance, empowering you to enhance your cybersecurity skills, understand the essentials of STIGs, and discover cutting-edge web application security practices. This immersive experience is tailored for IT professionals, developers, project teams, technical leads, project managers, testing/QA personnel, and other key stakeholders who seek to expand their knowledge and expertise in the evolving cybersecurity landscape. The course focuses on the intricacies of best practices for design, implementation, and deployment, inspired by the diverse and powerful STIGs, ultimately helping participants become more proficient in application security.The first half of the course covers the foundations of DISA's Security Technical Implementation Guides (STIGs) and learn the ethical approach to bug hunting, while exploring the language of cybersecurity and dissecting real-life case studies. Our expert instrtors will guide you through the importance of respecting privacy, working with bug bounty programs, and avoiding common mistakes in the field.The next half delves into the core principles of information security and application protection, as you learn how to identify and mitigate authentication failures, SQL injections, and cryptographic vulnerabilities. You?ll gain experience with STIG walkthroughs and discover the crucial steps for securing web applications.Throughout the course, you'll also explore the fundamentals of application security and development, including checklists, common practices, and secure development lifecycle (SDL) processes. You?ll learn from recent incidents and acquire actionable strategies to strengthen your project teams and IT organizations. You'll also have the opportunity to explore asset analysis and design review methodologies to ensure your organization is prepared to face future cybersecurity challenges. DISA's Security Technical Implementation Guides (STIGs) The motivations behind STIGs Requirements that the various software development roles must meet Implementing STIG requirements and guidelines Why Hunt Bugs? The Language of CyberSecurity The Changing Cybersecurity Landscape AppSec Dissection of SolarWinds The Human Perimeter Interpreting the 2021 Verizon Data Breach Investigation Report First Axiom in Web Application Security Analysis First Axiom in Addressing ALL Security Concerns Lab: Case Study in Failure Safe and Appropriate Bug Hunting/Hacking Working Ethically Respecting Privacy Bug/Defect Notification Bug Bounty Programs Bug Hunting Mistakes to Avoid Principles of Information Security Secuity Is a Lifecycle Issue Minimize Attack Surface Area Layers of Defense: Tenacious D Compartmentalize Consider All Application States Do NOT Trust the Untrusted Identification and Authentication Failures Applicable STIGs Quality and Protection of Authentication Data Proper hashing of passwords Handling Passwords on Server Side Session Management HttpOnly and Security Headers Lab: STIG Walk-Throughs Injection Applicable STIGs Injection Flaws SQL Injection Attacks Evolve Drill Down on Stored Procedures Other Forms of Server-Side Injection Minimizing Injection Flaws Client-side Injection: XSS Persistent, Reflective, and DOM-Based XSS Best Practices for Untrusted Data Lab: STIG Walk-Throughs Applications: What Next? Common Vulnerabilities and Exposures CWE/SANS Top 25 Most Dangerous SW Errors Strength Training: Project Teams/Developers Strength Training: IT Organizations Cryptographic Failures Applicable STIGs Identifying Protection Needs Evolving Privacy Considerations Options for Protecting Data Transport/Message Level Security Weak Cryptographic Processing Keys and Key Management Threats of Quantum Computing Steal Now, Crack Later Threat Lab: STIG Walk-Throughs Application Security and Development Checklists Checklist Overview, Conventions, and Best Practices Leveraging Common AppSec Practices and Control Actionable Application Security Additional Tools for the Toolbox Strength Training: Project Teams/Developers Strength Training: IT Organizations Lab: Recent Incidents SDL Overview Attack Phases: Offensive Actions and Defensive Controls Secure Software Development Processes Shifting Left Actionable Items Moving Forward Lab: Design Study Review Asset Analysis Asset Analysis Process Types of Application-Related Assets Adding Risk Escalators Discovery and Recon Design Review Asset Inventory and Design Assets, Dataflows, and Trust Boundaries Risk Escalators in Designs Risk Mitigation Options