Training Course

Foundations of Application Security

Practical training for secure-by-design software development

Register your interest

Discount pricing for students. Please contact us for more details.

Overview

Security doesn’t start at the end. It starts at the first line of code.
This two-day course gives developers, engineering, and security teams the skills to deliver secure, compliant software without slowing down. You’ll learn how to embed secure coding practices, align AppSec practices with regulatory frameworks like the Essential Eight and ISM, and build stronger collaboration across development, security, and operations.
The course blends modern software security theory with group activities and practical exercises focused on real-world engineering and delivery.

Key Focus Areas

Core training areas include:

  • Threat modelling techniques, including STRIDE, 4Q, and Attack Trees
  • Secure coding practices focused on authentication, configuration, and secrets management
  • Application security tooling such as SAST, SCA, SBOMs, and secrets scanning
  • DevSecOps pipelines and lightweight assurance workflows
  • Secure-by-design principles supported by real-world case studies
  • Running a successful AppSec program aligned with the Essential Eight and ISM

Course Outcomes

By the end of this course, you’ll know how to:

  • Build secure applications aligned with established cybersecurity frameworks
  • Catch and fix issues earlier in the development cycle, reducing reliance on penetration testing
  • Ship faster and safer in Agile and DevOps environments
  • Strengthen collaboration between dev, security, and ops without adding friction

Who will benefit from this course

Software Engineer

Programmer/Developer

AppSec Engineer

DevSecOps Engineer

DevOps Professional

Cloud Engineer

Upcoming Locations

  • Sydney – September
  • Newcastle – October
  • Melbourne – October
  • Canberra – November

Register Your Interest

”100% of our staff endorse this training and would gladly recommend it to others.”

”We found a 27% average of skill improvement across six key areas within our team post-training, with an impressive 65% skill boost in one topic.”

”The real-world threat modelling scenarios provided invaluable context and clarity.”

”Exceptional presentation style. A comprehensive overview of AppSec, surpassing other cyber courses we’ve experienced.”

Instructor Bio

Cole Cornford

Founder & CEO
Galah Cyber

Cole Cornford is a recognised leader in Australia’s application security scene. As Founder of Galah Cyber, he’s led major security programs across global teams and brings a strong engineering mindset to everything he does.

An active OWASP contributor, sought-after speaker, and host of the Secured podcast, Cole is known for cutting through complexity and speaking the language of developers.

Book a Free Consultation
Contact Us
Quick links
Services
Contact
Linkedin
Web Design Lake Macquarie