This course explains how software developers and testers can determine if their web applications are vulnerable to A09:2021 Security Logging and Monitoring Failures, as defined by the Open Web Application Security Project (OWASP).
Learning Objectives
On successful completion of this course, learners should have the knowledge and skills required to:
- Ensure high-value transactions have an audit trail with integrity controls to prevent tampering or deletion
- Understand how to effectively monitor and alert suspicious activities to ensure they can be detected and responded to quickly
- Establish or adopt a incident response and recovery plan, such as the National Institute of Standards and Technology (NIST) 800-61r2 or later
Framework Connections
Specialty Areas
- Test and Evaluation
- Systems Analysis
- Vulnerability Assessment and Management
Feedback
If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.