I have a 30-day 100% money back guarantee, so if you aren’t happy with your purchase, I will refund your course – no questions asked! However, students love this course and I’m pretty sure you will too.

Within 1,5 hour you will be able to explain web application security without having to code.
For your convenience: I’ve combined the OWASP 2017 and OWASP 2013 top 10 list into a single list of 10 common web application security threats. I’ve updated the course with the new threats added in 2021.
I will teach you the 10 most common threats identified by the Open Web Application Security Project (OWASP).

This course will jumpstart your security career!  

Whether you’re new web application security or or want to refresh your memory, this course has short videos that are easy to understand and require not prerequisite knowledge!

– Anyone who wants to understand the OWASP top 10 within a short amount of time, without beging bothered with technical details.
– Product Owners that care about their product
– (Project) managers that lead software projects
– Software architects that want to explain the OWASP top 10 to product owners
– Software engineers that want to advance their career, because security is part of every new assignment! 
– Pentesters / Red team that need to know how to communicate foundational knowledge
– Recruiters that want to challenge software engineers

Herewith some of the learning objectives you can expect after following this course:

– Be confident in explaining the OWASP top 10 during an interview
– Explain all OWASP top 10 threats short and impactful to get attention of managers
– Explain the impact per threat for your business
– Understand how the OWASP top 10 threats can be executed by attackers
– Understand how the OWASP top 10 threats may be mitigated
– Explain ‘Injection’ to your mom/dad
– Explain ‘Insecure Deserialisation’ to your non technical friends
– Understand best practices such as defence in depth and STRIDE

True, let me explain by giving you an overview of my experience:
– Parttime PhD researcher. I read the science, you’ll get the knowledge! What more do you want? 
– (Chief) Information Security Officer.  Responsible for implementing and maintaining a well balanced organisational risk posture;
– Software consultant (6,5 years). I’ve advised many managers of large / small IT projects on various software related aspects. 
– Unlike most other courses, you may actually claim 1 Continuing Professional Education (CPE) after finishing this course completely

Besides that I hold several certifications:
– CISSP which stands for Certified Information Systems Security Professional
– CSSLP which stands for Certified Secure Software Lifecycle Professional
– CISA stands for Certified Information Systems Auditor
– CIPP/E stands for Certified Information Privacy Professional / Europe

All four certifications are vendor-neutral certification programs. 

The course is made available online and you can log on to it and watch the videos, just like any other service. 

This courses is created such that everybody can follow it. Prerequisites are:
– Pen and paper to take notes
– Willingness to play with presented content

The threats are explained conceptually, since the implementation of a threat may differ per situation. Therefore, having a general understanding of the security threats, its implications and potential solutions will provide you with the essential knowledge to mitigate the impact of these web application security threats. Hence, no security coding or security testing experience needed.

While online learning may not be for everyone, this course comes with an exclusive webinar for you to ask your most pressing questions or just to follow Q&A asked by the community!

Sure! Scroll up and you will find a sneak preview video on this page. Watch these videos for free. Like me teaching style, do not hesitate to enrol and take control of your first impressions!