New Chainguard Academy course: Painless Vulnerability Management
The software supply chain becomes more secure as the security knowledge and education of developers and software professionals grows. To do our part in educating current professionals and emerging leaders, we are launching our first Chainguard Academy course: Painless Vulnerability Management.
This course (valued at $199) is free to early adopters, and is designed to help developers gain a deep understanding of vulnerability management. Being able to understand current vulnerabilities, triage, and mitigate them, are among the most critical components of securing the software supply chain. By the end of this course, participants will know standard tools and practices for managing vulnerabilities, and how Chainguard Images in particular can help make the process much less painful through secure-by-default minimal container images.
Closing the gaps between software developers and the cybersecurity workforce
If you’re a developer in 2024, vulnerabilities are your problem, too. However, today’s computer science students and aspiring software developers aren't learning enough cybersecurity in traditional academic settings. In fact, a shocking statistic from CISA revealed that computer science programs in 23 of the top 24 universities do not require courses in cybersecurity. This does not align with today’s reality, where software vulnerabilities are serving as key entry points for cybercriminals seeking to infiltrate digital systems. And the implications of an inadequately trained workforce can have cascading effects that impact security across sectors at the national and international levels.
New federal regulation is also shifting the responsibility of exploited vulnerabilities onto the organizations that are developing and shipping insecure software. And software vendors that wish to sell software to the U.S. Federal Government must become FedRAMP certified, a lengthy process that requires compliance with strict vulnerability guidelines.
To help developers get up to speed with recommended cybersecurity practices that are critical for today's regulatory environment, Chainguard is offering a Painless Vulnerability Management course. Achieving a secure-by-design future starts by arming all software developers and professionals with the skills, knowledge, and hands-on experience to build secure software from the ground up.
Charting your future toward painless vulnerability management
Chainguard’s Painless Vulnerability Management course includes 18 lessons and technical tutorials across four modules that cover the software security landscape, tools, and practices of vulnerability management, including:
Module 1: Software Vulnerability Overview
Module 2: How to Manage CVEs
Module 3: More Secure Base Images
Module 4: Chainguard Images to the Rescue
By the end of this course, participants will have an understanding of the standard tools and practices for managing software vulnerabilities and how to build secure software from the start that eliminates known vulnerabilities. Participants will also be able to make the process much less painful with cutting-edge tooling like Chainguard Images.
If you want to keep up with software industry security standards, impress current or prospective employers, and avoid a mistake that might cost your company a software supply chain attack: it is imperative to know how to effectively and easily manage vulnerabilities, and this course will help you along the way.
Existing Chainguard Images customers can also benefit from the hands-on tutorials and practices in the course to get the most out of our minimal, hardened container images that embody a secure-by-design infrastructure, thus making vulnerability management much less painful in your organization.
Visit our Chainguard Academy courses page to sign up and get started on your journey to become the Destroyer of Vulnerabilities you were always meant to be! Participants who finish the course, assessments, and final project will have the opportunity to receive a certificate of completion. Following the completion of this course, participants will have the know-how to begin deploying Chainguard Images immediately with only a few lines of code.
Throughout 2024, Chainguard Academy will be expanding our catalog of courses to cover the most important software supply chain security topics, so watch this space and send us a message if there are any topics you’d like us to cover in the future.
Share this article
Related articles
- Security
Get up to Speed on FedRAMP 20x
FedRAMP 20x is transforming cloud compliance with automation and continuous security. Learn how Chainguard Containers simplify 20x readiness with 0-CVE images.
Aaditya Jain, Senior Product Marketing Manager
- Security
Three Ways to Make Your SDLC Secure-by-Default
Build secure software faster with Chainguard. Learn how secure-by-default SDLC practices eliminate CVEs, automate compliance, and embed trust from code to cloud.
Sam Katzen, Staff Product Marketing Manager
- Security
Simplify Continuous Compliance: How to Stay Audit-Ready and Ship Software Faster
Turn compliance into a growth driver with Chainguard. Eliminate CVEs, stay audit-ready, and meet FedRAMP, SOC 2, and ISO 27001 with secure images.
Matt Stead, Marketing
- Security
Meeting the Zero-CVE Mandate: How Chainguard Helps Businesses Ship Secure Software That Customers Trust
Chainguard's zero-CVE containers come with broad compatibility, custom assembly, verifiable provenance and SBOMs, and more to help you ship secure software.
Sam Katzen, Staff Product Marketing Manager
- Security
Mitigating Malware in the npm Ecosystem with Chainguard Libraries
In a recent analysis, Chainguard Libraries for JavaScript prevented over 99% of malicious npm packages published to the npm registry.
Derek Garcia, Research Assistant, Charlie Robbins, Principal Software Engineer, and Manfred Moser, Senior Principal Developer Relations Engineer
- Security
This Shit is Hard: Applying "Zero Trust" to Open Source Software
Chainguard implements Zero Trust principles into everything we do to protect critical infrastructure in the age of open source. See how we do it.
Natalie Somersall, Principal Field Engineer, Public Sector