RSS
Логотип
Баннер в шапке 1
Баннер в шапке 2

Start Edu Secure Development Training Platform

Product
Developers: Start X (Antifishing)
Date of the premiere of the system: 2023/09/12
Branches: Information Technology,  Education and Science
Technology: Distance Learning Systems

The main articles are:

2024: Integration into the Softline Universe ecosystem

Softline Group of Companies (PJSC Softline), a provider of solutions and services in the field of digital transformation and information security, developing a comprehensive portfolio of its own products and services, on August 16, 2024 announced the launch of the Start EDU and Start AWR platforms as part of the Softline Universe ecosystem. The platforms are designed for continuous training and training of information security skills of employees and development teams. Read more here.

2023: Start EDU launch

On September 12, 2023, the Russian company Antifishing launched Start EDU, a product for teaching safe code skills. The platform takes into account the specifics of the project, automatically selects training modules based on the tasks and level of knowledge of developers in information security.

Internal or external training of developers in new approaches to threat prevention is usually not structured, consumes a lot of resources and does not bring the expected effect.

Start EDU is part of the Start X product ecosystem, a feature of the platform is to test the skills of developers and automatically select training modules for a specific project and level of knowledge on information security. In the platform, the product team manager assigns a training program based on the characteristics of the software being created and assigns the developers to the teams. Another feature is the construction of a competency map for each employee.

Start EDU offers an interactive and applied training format. Product teams develop secure development skills on current cases and examples of real code. For example, encoding and shielding when working with browsers (XSS), Manipulation (manipulation of file and directory names) and safe configuration of Kubernetes. The platform contains detailed tasks for searching for vulnerabilities in applications where you need to choose the right options for implementing protection, and even quotas with verification questions to consolidate knowledge.

File:Aquote1.png
Many product teams understand the importance of the security requirements and advantages of the Shift-Left Security approach, but forget about the most important thing - the people and competencies of the secure code writing team. Competent developers see potential vulnerabilities and prevent them at the stage of product design. And these competencies are important to develop without interruption from the real tasks of the team, - said Sergey Voldokhin, Product Director of the Start X ecosystem.
File:Aquote2.png

Earlier, the company introduced the Start REQ security management system, which helps product teams create secure software products as part of DevSecOps processes.