Job Description (JD)
| Nama Program | PERKHIDMATAN KESELAMATAN SIBER (UJIAN PENEMBUSAN) [J620-001-5:2025] |
|---|---|
| Kod CU | J620-001-5:2025-C03 |
| Competency | Core |
| Tajuk CU | Perform Application Security Testing. |
| Penerangan CU | Perform application security testing describes the competency in examining and assessing code settings, dependencies and environment variables to ensure smooth compilation and secure functionality. Source code analysis is conducted during development, code reviews or after significant changes to identify vulnerabilities, syntax errors or configuration issues. This process is crucial for maintaining code quality, optimizing performance and ensuring security by detecting misconfigurations early. Typically performed by developers or security analysts, the analysis uses both automated tools and manual review to verify configurations, assess code integrity and identify any dependency conflicts, helping ensure the code is reliable, secure and ready for deployment. The person who is competent in this CU should be able to identify application security testing scope, conduct static code analysis, conduct dynamic application security testing and produce application security testing report. The outcome of this CU is that the source code is secured, free from any errors and ready to be used in production. |
| Tempoh Latihan | 200 |
| Objektif Pembelajaran | The learning outcomes of this competency are to enable the trainees to effectively assess and analyse source code using static and dynamic techniques and enabling organizations to identify, document, and mitigate security weaknesses while improving overall software quality and security posture. Upon completion of this competency unit, trainees should be able to: 1. Identify application security testing scope. 2. Conduct static code analysis. 3. Conduct dynamic application security testing. 4. Produce application security testing report. |
| Pra-Syarat | Not Available. |