Supply Chain Risk Management with OWASP Dependency-Check from Pluralsight

Software supply chain risks are a huge security concern today and automated tools are essential to mitigate this threat. In this course, you will learn how to manage this risk by setting up OWASP Dependency-Check scanning on a software project.

On average, a modern software application relies on over 500 open source components, and at least 25% of these dependencies will have known security vulnerabilities. Yet software vendors are all too often unaware of these vulnerabilities and may not even know on which components their software is dependent. In this course, Supply Chain Risk Management with OWASP Dependency-Check, you will learn how to use OWASP Dependency-Check to secure your software supply chain by scanning for, detecting, and acting on vulnerable third party components in software you produce. First, you will discover how to obtain and install OWASP Dependency-Check. Next, you will see how Dependency-Check can be used to scan an application for vulnerable dependencies. Finally, you will explore some best practices for reviewing and remediating the output of a Dependency-Check scan. By the end of this course, you will know how to manage these risks by setting up OWASP Dependency-Check scanning on a software project.

What's inside

Syllabus

Course Overview

Securing Project Dependencies with OWASP Dependency-Check

Summary and Resources

Good to know

Know what's good

, what to watch for

, and possible dealbreakers

Suitable for Security Software Developers seeking to protect against common security vulnerabilities

Activities

Be better prepared before your course. Deepen your understanding during and after it. Supplement your coursework and achieve mastery of the topics covered in Supply Chain Risk Management with OWASP Dependency-Check with these activities:

Review Software Dependency Management Basics

Show steps

Refresh your understanding of software dependency management principles to enhance your application of OWASP Dependency-Check.

Browse courses on Dependency Management

Show steps

Review articles or tutorials on software dependency management
Recall key concepts and best practices

Follow OWASP Dependency-Check Tutorial

Show steps

Supplement your learning by following guided tutorials to reinforce your understanding of OWASP Dependency-Check.

Show steps

Find an online tutorial on OWASP Dependency-Check
Complete the tutorial steps
Review the tutorial materials

Attend OWASP Dependency-Check User Group Meeting

Show steps

Expand your knowledge and connect with professionals by attending an OWASP Dependency-Check user group meeting.

Show steps

Find an OWASP Dependency-Check user group meeting
Attend the meeting
Participate in discussions and ask questions

Four other activities

Expand to see all activities and additional details

Show all seven activities

Conduct OWASP Dependency-Check Vulnerability Scan Practice

Show steps

Gain hands-on experience with OWASP Dependency-Check by performing practice vulnerability scans.

Show steps

Install OWASP Dependency-Check
Configure OWASP Dependency-Check
Scan a sample application
Analyze the scan results

Create a Presentation on OWASP Dependency-Check

Show steps

Reinforce your learning by creating a presentation that showcases your knowledge of OWASP Dependency-Check.

Show steps

Gather information about OWASP Dependency-Check
Organize the information into a logical flow
Design the presentation slides

Document OWASP Dependency-Check Implementation

Show steps

Solidify your understanding by creating a document that explains your implementation of OWASP Dependency-Check.

Show steps

Gather information about your OWASP Dependency-Check implementation
Organize the information into a coherent document
Write the documentation

Integrate OWASP Dependency-Check into Software Development Workflow

Show steps

Apply your knowledge by integrating OWASP Dependency-Check into your software development workflow.

Show steps

Plan the integration of OWASP Dependency-Check
Configure your development environment
Test the integration
Deploy the integration

Career center

Learners who complete Supply Chain Risk Management with OWASP Dependency-Check will develop knowledge and skills that may be useful to these careers:

Privacy Officer

Privacy Officers protect the privacy of personal information within their organization. They work closely with other members of the privacy team to develop and implement policies and procedures to protect personal information from unauthorized access, use, disclosure, disruption, modification, or destruction. To be successful in this role, you will need to have a strong understanding of information security principles and practices. The Supply Chain Risk Management with OWASP Dependency-Check course can help you build a foundation in these areas by teaching you how to identify and mitigate vulnerabilities in software supply chains.

See salaries and explore the career path for Privacy Officer

IT Auditor

IT Auditors evaluate the security of an organization's information systems and networks. They work closely with other members of the IT team to identify and mitigate risks to the organization's information assets. To be successful in this role, you will need to have a strong understanding of information security principles and practices. The Supply Chain Risk Management with OWASP Dependency-Check course can help you build a foundation in these areas by teaching you how to identify and mitigate vulnerabilities in software supply chains.

See salaries and explore the career path for IT Auditor

Network Administrator

Network Administrators manage and maintain computer networks for their organization. They work closely with other members of the IT team to ensure that the network is running smoothly and securely. To be successful in this role, you will need to have a strong understanding of network security principles and practices. The Supply Chain Risk Management with OWASP Dependency-Check course can help you build a foundation in these areas by teaching you how to identify and mitigate vulnerabilities in software supply chains.

See salaries and explore the career path for Network Administrator

Risk Manager

Risk Managers identify and assess risks to their organization's information assets. They work closely with other members of the security team to develop and implement strategies to mitigate these risks. To be successful in this role, you will need to have a strong understanding of information security principles and practices. The Supply Chain Risk Management with OWASP Dependency-Check course can help you build a foundation in these areas by teaching you how to identify and mitigate vulnerabilities in software supply chains.

See salaries and explore the career path for Risk Manager

Security Engineer

Security Engineers design, implement, and maintain security systems for their organizations. They work closely with other members of the security team to ensure that the organization's information assets are protected from unauthorized access, use, disclosure, disruption, modification, or destruction. To be successful in this role, you will need to have a strong understanding of information security principles and practices. The Supply Chain Risk Management with OWASP Dependency-Check course can help you build a foundation in these areas by teaching you how to identify and mitigate vulnerabilities in software supply chains.

See salaries and explore the career path for Security Engineer

Systems Administrator

Systems Administrators manage and maintain computer systems for their organization. They work closely with other members of the IT team to ensure that the systems are running smoothly and securely. To be successful in this role, you will need to have a strong understanding of system security principles and practices. The Supply Chain Risk Management with OWASP Dependency-Check course can help you build a foundation in these areas by teaching you how to identify and mitigate vulnerabilities in software supply chains.

See salaries and explore the career path for Systems Administrator

Chief Information Security Officer (CISO)

The Chief Information Security Officer (CISO) is responsible for developing and implementing security policies and procedures for their organization. They work closely with other members of the security team to ensure that the organization's information assets are protected from unauthorized access, use, disclosure, disruption, modification, or destruction. To be successful in this role, you will need to have a strong understanding of information security principles and practices. The Supply Chain Risk Management with OWASP Dependency-Check course can help you build a foundation in these areas by teaching you how to identify and mitigate vulnerabilities in software supply chains.

See salaries and explore the career path for Chief Information Security Officer (CISO)

Database Administrator

Database Administrators manage and maintain databases for their organization. They work closely with other members of the IT team to ensure that the databases are running smoothly and securely. To be successful in this role, you will need to have a strong understanding of database security principles and practices. The Supply Chain Risk Management with OWASP Dependency-Check course can help you build a foundation in these areas by teaching you how to identify and mitigate vulnerabilities in software supply chains.

See salaries and explore the career path for Database Administrator

Security Analyst

Security Analysts help protect their organization's networks and systems from cyber threats. These threats may come from a range of sources, including malware, hackers, and phishing attacks. To be successful in this role, you will need to have a strong understanding of information security principles and practices. The Supply Chain Risk Management with OWASP Dependency-Check course can help you build a foundation in these areas by teaching you how to identify and mitigate vulnerabilities in software supply chains.

See salaries and explore the career path for Security Analyst

Compliance Officer

Compliance Officers ensure that their organization complies with all applicable laws and regulations. They work closely with other members of the compliance team to develop and implement policies and procedures to ensure compliance. To be successful in this role, you will need to have a strong understanding of information security principles and practices. The Supply Chain Risk Management with OWASP Dependency-Check course can help you build a foundation in these areas by teaching you how to identify and mitigate vulnerabilities in software supply chains.

See salaries and explore the career path for Compliance Officer

Security Consultant

Security Consultants help organizations to identify and mitigate security risks. They work closely with clients to develop and implement security strategies and solutions. To be successful in this role, you will need to have a strong understanding of information security principles and practices. The Supply Chain Risk Management with OWASP Dependency-Check course can help you build a foundation in these areas by teaching you how to identify and mitigate vulnerabilities in software supply chains.

See salaries and explore the career path for Security Consultant

Information Security Manager

Information Security Managers are responsible for developing and implementing security policies and procedures for their organizations. They work closely with other members of the security team to ensure that the organization's information assets are protected from unauthorized access, use, disclosure, disruption, modification, or destruction. To be successful in this role, you will need to have a strong understanding of information security principles and practices. The Supply Chain Risk Management with OWASP Dependency-Check course can help you build a foundation in these areas by teaching you how to identify and mitigate vulnerabilities in software supply chains.

See salaries and explore the career path for Information Security Manager

Security Architect

Security Architects design and implement security architectures for their organizations. They work closely with other members of the security team to ensure that the organization's information assets are protected from unauthorized access, use, disclosure, disruption, modification, or destruction. To be successful in this role, you will need to have a strong understanding of information security principles and practices. The Supply Chain Risk Management with OWASP Dependency-Check course can help you build a foundation in these areas by teaching you how to identify and mitigate vulnerabilities in software supply chains.

See salaries and explore the career path for Security Architect

Software Developer

Software Developers design, develop, and maintain software applications. They work closely with other members of the development team to ensure that the software meets the needs of the users. To be successful in this role, you will need to have a strong understanding of software development principles and practices. The Supply Chain Risk Management with OWASP Dependency-Check course can help you build a foundation in these areas by teaching you how to identify and mitigate vulnerabilities in software supply chains.

See salaries and explore the career path for Software Developer

Penetration Tester

Penetration Testers identify and exploit vulnerabilities in computer systems and networks. They work closely with other members of the security team to develop and implement security strategies and solutions. To be successful in this role, you will need to have a strong understanding of information security principles and practices. The Supply Chain Risk Management with OWASP Dependency-Check course may be useful for this role as it can help you build a foundation in these areas by teaching you how to identify and mitigate vulnerabilities in software supply chains.

See salaries and explore the career path for Penetration Tester