5, 10 or 20 seats+ for your team - learn more
Software is integral to businesses large and small. Software provides a means to track employees, customers, inventory, and scheduling, and allows data to move through a myriad of systems. Whether built in-house or purchased elsewhere and integrated, software applications sit at the core of every organization, regardless of size and industry.
And every one of those software applications needs securing!
In this quick guide to application security, we cover what’s in the OWASP Top Ten, the most up-to-date guide to the most critical security risks for web applications. We’ll go over what makes software vulnerable and how to protect applications from attacks to these vulnerabilities. We’ll talk about cryptographic failures, insecure configuration, how to maintain software integrity, what injection attacks are, and the common terms and security goals used in every organization. You’ll learn some of the basic ways to bring application security into the software development lifecycle, both from a traditional pipeline and from a DevSecOps perspective.
Distributed by Manning Publications
This course was created independently by Derek Fisher and is distributed by Manning through our exclusive liveVideo platform.
Derek Fisher has been working in application security for over a decade, and has seen numerous security successes and failures firsthand. He has several decades of experience designing systems in both hardware and software, and holds a graduate degree in cybersecurity from Boston University. He continues to work as a leader, university instructor, and conference speaker in the security space where he provides his insight to professionals in multiple fields and disciplines.
Application Security with the OWASP Top Ten 2025 liveVideo for free