Course Code: sicurezzapait
Duration: 42 hours
Prerequisites:
  1. Basic knowledge of computer science and programming principles.
  2. Familiarity with fundamental cybersecurity concepts.
  3. Understanding of network protocols and computer system architectures.
  4. Knowledge of data management principles and privacy protection.
  5. Practical experience in software development or information systems management.
  6. Ability to use basic computer tools and technologies.
Overview:

The course aims to provide students with the skills necessary to understand, implement and evaluate the security of software used in the Public Administration, in accordance with the guidelines of the Agency for Digital Italy (AGID) and best practices in the security sector informatics.

Course Outline:

Introduction to PA software security
• Basic concepts of computer security
• Importance of software security in Public Administration
• Role of AGID guidelines in ensuring software security


AGID guidelines for software security
• Overview of the AGID guidelines
• Fundamental principles for secure software development
• Relevant laws and regulations


Secure software architecture and design
• Principles of secure architecture
• Best practices for secure software design
• Data security and identity management


Secure software development
• Secure software lifecycle
• Secure development methodologies (such as DevSecOps)
• Tools and techniques for writing secure code


Software security testing
• Static and dynamic analysis techniques
• Penetration and vulnerability testing
• Automation of security tests


Software security assessment
• Software security evaluation criteria
• Risk analysis and impact assessment
• Software security auditing and monitoring


Vulnerability and incident management
• Identification and mitigation of vulnerabilities
• Incident planning and response
• Reporting and documentation of security incidents


Regulatory compliance and compliance with AGID guidelines
• Compliance with IT security regulations
• Compliance audits and certifications
• Role of governance in the security of PA software

Focus:
• Secure software development simulations
• Practical exercises on software security assessment

Sites Published:

Italia - Sicurezza del Software per la Pubblica Amministrazione