Description
WHAT YOU WILL LEARN
A Certified Service Security Specialist has comprehensive knowledge of common threats and vulnerabilities associated with services-based solutions and modern service technologies, and has demonstrated proficiency in establishing contemporary security technology architectures through the mastery of security patterns, practices and industry technologies. Depending on the exam format chosen, attaining the Service Security Specialist Certification can require passing a single exam or multiple exams. Those who achieve this certification receive an official digital Certificate of Excellence, as well as a digital Certification Badge from Acclaim/Credly with an account that supports the online verification of certification status.
MODULE OVERVIEW
The Service Security Specialist certification track is associated with the following courses and the courses can be delivered via instructor-led training.
SOACP Module 1: Fundamental SOA, Services & Microservices
This course provides an easy to understand, end-to-end overview of contemporary service concepts and technologies pertaining to modern-day microservices and service-oriented computing, as well as business and technology-related topics pertaining to service-oriented architecture (SOA).
The following primary topics are covered:
– Business and Technology Drivers for SOA, Services and Microservices
– Strategic Goals and Benefits of Service-Oriented Computing
– Plain English Introduction to Services and Microservices
– Fundamental Characteristics of a Service-Oriented Architecture
– Understanding Service-Orientation as a Design Paradigm, including the Four Pillars of Service-Orientation
– Introduction to Service Layers, Service Models and Service Compositions
– Service Inventories, Service Layers and Service API Governance and Management
– Introduction to Common Service Technologies, including API Gateways, Virtualization, Containerization
– Introduction to Cloud Computing and Cloud Services
– Adoption Impacts, including considerations for Governance, Infrastructure, Performance and Standardization
Duration: 1 Day
SOACP Module 2: Service Technology Concepts
This course focuses on modern service technologies, models and concepts that have established de facto implementation mediums for building contemporary services-based solutions. Also covered are fundamental terms, concepts and models pertaining to cloud computing and cloud-based services.
The following primary topics are covered:
– Comparing Service Implementation Mediums
– Service Roles and Service Agents
– Message Exchange Patterns and Service Activities
– Basic XML, XML Schema, JSON and JSON Schema Concepts
– HTTP Methods, Response Codes and Headers
– Basic REST Service Concepts, including Properties and Constraints
– REST Services, Contracts, Resources and Messaging
– Hypermedia and Late Binding
– Basic WSDL and SOAP Concepts
– WS-* Technologies
– Web Service Contracts, Messaging and Registries
– Cloud Computing Concepts
– Vertical and Horizontal Scaling
– Multitenancy, Elasticity and Resiliency
– On-Demand Usage, Ubiquitous Access and Measured Usage
– Public, Private and Hybrid Clouds
– IaaS, PaaS and SaaS
Duration: 1 Day
SOACP Module 18: Fundamental Security for Services, Microservices & SOA
This course provides essential techniques, patterns and industry technologies that pertain to establishing security controls and security architectures for services, microservices and service-oriented solutions.
The following primary topics are covered:
– Security and the Service-Oriented Architectural Model
– SOA Security Considerations for Service and Composition Architectures
– Security Implications of Service-Orientation Principles
– Trust, Claims, Tokens, Identity, Authentication, Authorization, Transport and Message Layer Security
– Encryption, Hashing, Digital Signatures, Identity and Access Management (IAM)
– Public Key Infrastructure (PKI), Digital Certificates, Certificate Authorities, Single Sign-On (SSO)
– REST Services and JSON Industry Standards
– JavaScript Object Signing and Encryption (JOSE) Framework, OAuth2
– HTTP Basic and Digest Authentication, API Key, JWT with X.509 certificates
– Service Interaction Security Patterns (Data Confidentiality, Data Origin Authentication, Direct Authentication, Brokered Authentication)
– Web Services and XML Industry Standards
– XML Encryption, XML Signature, WS-Security, Token Profiles, SAML
– Microservice Security Considerations
– Implementing SOA Security and Service-Orientation Security
Duration: 1 Day
SOACP Module 19: Advanced Security for Services, Microservices & SOA
This course covers a series of technical and complex security topics pertaining to contemporary service-oriented solution design, infrastructure, microservices, API gateways and modern service technologies.
The following primary topics are covered:
– Understanding SOA Security Threats
– STRIDE (Spoofing, Tampering, Repudiation, Information Disclosure, Denial-of-Service, Elevation of Privilege)
– SOA Security Patterns for Internal Service Architecture (Exception Shielding, Message Screening, Trusted Subsystem, Service Perimeter Guard)
– Security Token Structures and Issuance (JWT, Username, X.509, SAML)
– Authentication Sessions and Secure Conversations
– Federation and Trust Brokering Security
– Policy Design and Governance
– REST Security Controls and Designs
– Open API Specification (OAS v 3.0), Open ID Connect
– Web service Security Controls and Designs
– WS-Policy, WS-SecurityPolicy, WS-Trust and WS-Secure Conversation with SAML
– Microservices and Containerization Security Considerations
– Security Extensions and Controls for API Gateways and ESBs
– Security Risks and Considerations for Cloud-based Services and Service compositions
– Preparing for Common SOA Security Threats
Duration: 1 Day
SOACP Module 20: Security Lab for Services, Microservices & SOA
As a continuation of course modules 18 and 19, this hands-on workshop allows attendees to apply the security concepts, techniques, patterns and technologies previously covered in order to complete a set of exercises.
Participants are required to analyze case study backgrounds and carry out a series of exercises to solve a number of inter-related problems, with the goal of producing a range of security solutions.
Duration: 1 Day
PREREQUISITES
- There are no formal prerequisites for the certification exam
EXAM & CERTIFICATION
You can take exams anywhere in the world via Pearson VUE testing centers, Pearson VUE online proctoring and Arcitura on-site exam proctoring at your location.
You are provided with three flexible exam format options:
- Complete Exam S90.SSE, a single combined exam for the entire Service Security Specialist certification track. Recommended for those who want to only take a single exam that encompasses all course modules within this track.
- Complete the partial version of Exam S90.SSE. Recommended for those who have already obtained a SOACP certification and would like to achieve the Service Security Specialist Certification without having to be retested on SOACP Modules 1 and 2.
- Complete one module-specific exam for each course module in Service Security Specialist Certification track. This is recommended for those who want to progress gradually through the track and who would like to be assessed after each course module before proceeding to the next.
