Core Principles of Secure Application Development

Embed security throughout software development and cloud environments

Software moves fast, and security can’t be an afterthought.

Prep yourself on how to build security into software from the first line of code.

You’ll practise secure coding, create and analyse threat models, protect software supply chains, and implement cloud and container security. Along the way, you’ll produce outputs such as vulnerability reports, secure code fixes, and a capstone threat model project.

Secure foundations and code-level protection

Vulnerabilities can hide in the smallest pieces of code, and understanding them is key to building safer applications.

You’ll be guided through OWASP secure coding practices where you’ll learn spotting flaws and applying fixes in live code. Exercising a focus on strengthening security without slowing development, combining theory with hands-on practice.

Threat modelling and software supply chain security

Identifying risks before they become vulnerabilities is critical in modern software.

You’ll create comprehensive threat models, generate SBOMs, and track third-party dependencies. These activities show how secure-by-design principles can be applied across applications and supply chains.

Cloud, containers, and CI/CD security

Applications are increasingly deployed in cloud environments and containerised systems. You’ll learn how to integrate automated security checks into CI/CD pipelines, ensuring development stays fast while maintaining robust protection.

You’ll walk away with a capstone project that brings all these skills together, with a portfolio-ready output that showcases your applied security expertise.

This course suits anyone looking to strengthen their skills in application security. From security engineers, developers, DevOps and cloud engineers to IT managers and product leaders can apply hands-on secure coding, threat modelling, and cloud security techniques.

This course suits anyone looking to strengthen their skills in application security. From security engineers, developers, DevOps and cloud engineers to IT managers and product leaders can apply hands-on secure coding, threat modelling, and cloud security techniques.

• Apply secure coding practices and OWASP top 10 prevention techniques to eliminate vulnerabilities during development phases.
• Analyze application architectures to identify critical security threats and design comprehensive threat models for risk mitigation.
• Evaluate software supply chains and implement security controls for open-source components, dependencies, and vendor relationships.
• Design secure cloud-native and container architectures with automated monitoring and compliance validation capabilities.