Certified Java and Web application security Training

  • Learn via: Classroom / Virtual Classroom / Online
  • Duration: 3 Days
  • Level: Intermediate
  • Price: From €5,421+VAT

This intensive 3-day course provides Java developers with the expertise to secure their web applications against common and advanced threats.
Participants will explore OWASP Top 10, SEI CERT, and Spring Security to prevent issues such as SQL Injection, XSS, Race Conditions, Log4Shell, and Spring2Shell.
Hands-on labs ensure practical application of security concepts through real-world coding exercises.


Regulatory Compliance (BDDK)

Fully aligned with the
Regulation on Banks’ Information Systems and Electronic Banking Services (Articles 20, 22, 23, 25).

Key compliance areas:

  • Secure software development lifecycle (Article 20)

  • Versioning and change management (Article 22)

  • Security testing and vulnerability assessment (Article 23)

  • Information security awareness (Article 25)

Ideal for banks, financial institutions, and regulated industries requiring compliance training.

 

We can organize this training at your preferred date and location. Contact Us!
Siemens Türkiye
ICBC Turkey
Schneider Electric
Vodafone
DHL
PHILIP MORRIS SABANCI PAZARLAMA VE SATIS A.S
MINISTRY OF INTERNAL AFFAIRS
Advanced Electronics Company AECL
TEXAS A&M UNIVERSITY - QATAR
PAPİLON SAVUNMA GUVENLIK SISTEMLERI BILISIM HİZM. İHR. SAN. VE TİC. A.Ş.
Norm LLC
İNFRASİS BİLGİ TEKNOLOJİLERİ TİC. LTD. ŞTİ.
Switch E-Gate for Financial Services
Bank Of China
Y.NOT.U Training and Development
Dialog Semiconductor
Viessmann Isı Teknolojileri San. ve Tic Ltd. Şti.
Paycore
North Caspian Operating Company N.V. (NCOC N.V.)
European Central Bank

Who Should Attend

Java developers, software engineers, security analysts,
and professionals in banking or regulated sectors responsible for application security.

What You Will Learn

Delegates will be able to:

  • Identify and fix OWASP Top 10 vulnerabilities in Java applications.

  • Implement secure coding to prevent injection, XSS, and race conditions.

  • Use Java and Spring Security features effectively.

  • Harden authentication and session management.

  • Perform vulnerability assessments using SAST and DAST tools.

  • Mitigate modern threats such as Log4Shell and Spring2Shell.

  • Apply SEI CERT and Saltzer-Schroeder security principles.


Graduates of this course will be able to:

  • Develop and maintain secure Java applications,

  • Conduct vulnerability assessments,

  • Ensure full compliance with BDDK secure coding and testing standards.


Training Outline

Day 1:

  • IT Security foundations and OWASP Top 10

  • SQL, OS, and XML Injection

  • XSS attack analysis and prevention

Day 2:

  • Authentication, session handling, CSRF defense

  • Logic flaws, race conditions, file upload security

  • Business logic and path traversal

Day 3:

  • Java and Spring Security deep dive

  • EL Injection, AOP-based security, endpoint protection

  • Static and dynamic testing with Burp, ZAP, SQLMap

  • Secure coding principles and exam preparation


Certification

  • Online APMG multiple-choice exam

  • 60 questions, 50% pass mark

  • Proctored remotely via the APMG Candidate Portal

Training Reviews
Contact us for more detail about our trainings and for all other enquiries!

Avaible Training Dates

Join our public courses in our Istanbul, London and Ankara facilities. Private class trainings will be organized at the location of your preference, according to your schedule.

We can organize this training at your preferred date and location.
09 February 2026 (3 Days)
Istanbul, Ankara, London
€5,421 +VAT
14 March 2026 (3 Days)
Istanbul, Ankara, London
€5,421 +VAT
24 March 2026 (3 Days)
Istanbul, Ankara, London
€5,421 +VAT
13 April 2026 (3 Days)
Istanbul, Ankara, London
€5,421 +VAT
23 April 2026 (3 Days)
Istanbul, Ankara, London
€5,421 +VAT
25 April 2026 (3 Days)
Istanbul, Ankara, London
€5,421 +VAT
03 May 2026 (3 Days)
Istanbul, Ankara, London
€5,421 +VAT
06 May 2026 (3 Days)
Istanbul, Ankara, London
€5,421 +VAT
Blog posts related to Certified Java and Web application security Course

30 INNOVATIVE WEB APPLICATION PROJECT IDEAS FOR 2023

Explore 30 groundbreaking web application project ideas for 2023. Dive into the future of digital innovation, from collaborative tools to sustainability trackers, and discover why web apps continue to shape our online experiences.

Related Trainings

Bilginç IT Academy All Rights Reserved

By using this website you agree to let us use cookies. For further information about our use of cookies, check out our Cookie Policy.