Top of Page

(ISC)² Security Compass and (ISC)² Launch New Certificate Program to Raise Baseline Application Security Knowledge

Toronto, Ontario, March 1, 2016 -- Security Compass and (ISC)²® today announced a new series of on-demand learning courses that teach foundational elements of software security and language-specific secure coding, called the Secure Software Practitioner Suites. This new learning resource combines training with a certificate exam at the end of the session to help practitioners validate skill sets in OWASP top 10, defending language-specific code of their choice (java, .NET, PHP or mobile) and secure software concepts, design and coding.

According to the (ISC)² Global Information Security Workforce Study, application vulnerabilities were identified as the top security concern for the third consecutive study. The Secure Software Practitioner Suites were created to provide organizations and their development teams with the skills needed to write more secure software code, reduce vulnerabilities and to help global businesses enhance the overall security posture of their software products. The on-demand format offers interactive training that developers can complete within half a day, followed by an online certificate exam delivered through Pearson VUE that validates the knowledge they’ve attained to help them build more secure software. The suites also provide a cost-effective delivery mechanism by which organizations can train their employees.

"A recurring challenge that we see is that software development team needs training specific to coding language,” says Michelle Dizon, Head of Training at Security Compass. “The role-specific learning paths in the Secure Software Practitioner Suites make learning unique to each student's needs. Having a training program that is mutually beneficial to both the organization (increased knowledge and awareness) and individual (an industry recognized certificate) make this suite of courses invaluable for the application security industry. This program does exactly what it was created to do – it raises the foundational level of application security knowledge and general security awareness for software development practitioners."

"It’s frustrating to see that application vulnerabilities remain the top security threat year-over-year, as identified by our workforce study,” says Philip Casesa, CSSLP, CISSP, product development strategist, (ISC)2. "Businesses today need to understand that under-delivering on security, especially for consumer products, can cost them long-term reputational damage, unbudgeted costs for remediation, a drop in stock value and sales, and even the jobs of CEOs and others at the C-suite level. We’re proud to partner with Security Compass to help deliver the Secure Software Practitioner Suites as a real educational solution to help software practitioners implement secure practices throughout the entire software development lifecycle.”

The first modules within the Secure Software Practitioner Suites that will be available on April 18, 2016 include:
•Mobile Developers
•PHP Developers
•.NET Developers
•Java Developers

For more information about the Secure Software Practitioner Suites, visit

About Security Compass
Headquartered in Toronto, Security Compass is a leading information security firm specializing in web and mobile application security for Fortune 500s, large financial institutions, energy firms, technology/software providers, media companies, retailers and other businesses. Security Compass was a key contributor on mobile application security to the HP 2012 Cyber Risk Report. Website:

About (ISC)²
Formed in 1989, (ISC)² is the largest not-for-profit membership body of certified cyber, information, software and infrastructure security professionals worldwide, with over 110,000 members in more than 160 countries. Globally recognized as the Gold Standard, (ISC)² issues the Certified Information Systems Security Professional (CISSP®) and related concentrations, as well as the Certified Secure Software Lifecycle Professional (CSSLP®), the Certified Cyber Forensics Professional (CCFP®), Certified Cloud Security Professional (CCSPSM), Certified Authorization Professional (CAP®), HealthCare Information Security and Privacy Practitioner (HCISPP®), and Systems Security Certified Practitioner (SSCP®) credentials to qualifying candidates. (ISC)²’s certifications are among the first information technology credentials to meet the stringent requirements of ISO/IEC Standard 17024, a global benchmark for assessing and certifying personnel. (ISC)² also offers education programs and services based on its CBK®, a compendium of information and software security topics. More information is available at


© 2016, (ISC)² Inc., (ISC)², CISSP, ISSAP, ISSMP, ISSEP, CSSLP, CAP, CCFP, HCISPP, SSCP and CBK are registered marks, and CCSP is a service mark, of (ISC)², Inc.


Contact Information:

Christine MacDonald 

Security Compass 

+1 6479612578