A learning management system (LMS) is a software application for the administration, documentation, tracking, reporting, and delivery of educational courses, training programs, or learning and development programs. (source: Wikipedia)

Integrating Secure Code Warrior® with your LMS may help you streamline access to secure code learning resources and gamified challenges as well as assign, track and report on Assessments.

Some Benefits of LMS Integration

Management overhead reduced
Training is automatically pushed to developer profiles by your LMS

Automatic reminders sent to non-compliant users
Your LMS can automatically send a reminder to users to complete any outstanding mandatory training

Annual training refresh built into your LMS
You can choose to have users automatically reminded to redo mandatory training on a regular basis

Pre-requisites

Setup and Configure Single-Sign On

Secure Code Warrior supports Single Sign On (SSO) to provision user accounts in real-time automatically. Please see Setup and Configure Single-Sign-On (SSO) for details. 

Setup and Configure Assessment

Assessments are used to test Players competency. An Assessment is configured for a language:framework and choice of vulnerabilities, difficulty level, and a minimum score to pass. Please see How to Create an Assessment for details.

Setup and Configure Courses

Courses help build a positive culture around application security as well as training in general, leading to more security-conscious developers in the world which is great for everyone. 

Courses are used to create guided learning paths that focus on the specific vulnerabilities that impact your organization and you can change these paths as your development teams evolve and build their awareness. Please see How to Create a Course for details.

Setup and Configure Secure Code Warrior API

To programmatically assign assessments and/or Courses, track progress, and report results API access must be enabled, and LMS Connector created. Please see 'How to enable API access' for details. 

Note: Due to the many types and versions of LMS systems available today, we support different integration methods (CSV, REST API) and can provide advice that will help you build your LMS Connector.

Recommended Approach

Create Course in LMS

Create a 'Course' in your LMS as an alias to the Secure Code Warrior Learning Platform. The alias in your LMS Course Catalogue will be used to redirect and log in the user to the Secure Code Learning Platform via SSO.

Tip:We recommend creating a single 'Course' that includes multiple programming language:frameworks to establish a baseline of secure coding awareness. Further langage:framework specific 'Courses' should be added to grow secure coding maturity across the teams in your organisation.

Assigning an Assessment or Course

Assessments and Courses can be assigned using the Secure Warrior API (v2). Please refer to the Secure Code Warrior API Center for details. 

Tracking Progress and Reporting Results

To monitor a Players's learning, progress status, and report on their score using the Secure Warrior API (v2). Please refer to the Secure Code Warrior API Center for details.

Alternatively, a Company Administrator can export a CSV of the Assessment and Course data from Secure Code Warrior metrics and reports available in the platform. The LMS can then be updated based upon a manual process or script. Please refer to [ xxx ] for a list of available reports.

FAQ

Q) Can we add Secure Code Warrior content to our SCORM compliant LMS?

A). No. Due to the interactive nature of our language:framework-specific coding challenges and gamified features, Secure Code Warrior does not support SCORM APIs or SCORM Wrappers.