Integrating Secure Code Warrior® with your organization's Learning Management System may help you streamline access to secure code learning resources and gamified challenges as well as assign, track and report on Assessments.
Just a quick note on this:
A learning management system (LMS) is a software application for the administration, documentation, tracking, reporting, and delivery of educational courses, training programs, or learning and development programs. (source: Wikipedia)
Some Benefits of LMS Integration
Management overhead reduced
Training is automatically pushed to developer profiles by your LMS
Automatic reminders sent to non-compliant users
Your LMS can automatically send a reminder to users to complete any outstanding mandatory training
Annual training refresh built into your LMS
You can choose to have users automatically reminded to redo mandatory training on a regular basis
Setup and Configure Single-Sign-On
Secure Code Warrior supports Single Sign On (SSO) to provision user accounts in real-time automatically. Please see Setup and Configure Single-Sign-On (SSO) for details.
Setup and Configure Assessment
Assessments are used to benchmark developer competency. An Assessment is configured for a language:framework and choice of vulnerabilities, difficulty level, and a minimum score to pass. Please see How to Create an Assessment for details.
Setup and Configure Courses
Courses help build a positive culture around application security as well as training in general, leading to more security-conscious developers in the world which is great for everyone.
Courses are used to create guided learning pathways that focus on the specific vulnerabilities that impact your organization. These learning pathways can be updated or changed as your development teams evolve and build their security awareness. Please see How to Create a Course for details.
Setup and Configure Secure Code Warrior API
Note: Due to the many types and versions of LMS systems available today, we support different integration methods (CSV, REST API) and can provide advice that will help you build your LMS Connector.
Create Course in LMS
Create a 'Course' in your LMS as an alias to the Secure Code Warrior Learning Platform. The alias in your LMS Course Catalogue will be used to redirect and log in the user to the Secure Code Learning Platform via SSO.
Tip: We recommend creating a single 'Course' that includes multiple programming language:frameworks to establish a baseline of secure coding awareness. Further langage:framework specific 'Courses' should be added to grow secure coding maturity across the teams in your organisation.
Assigning an Assessment or Course
Assessments and Courses can be assigned using the Secure Warrior API (v2). Please refer to the Secure Code Warrior API Center for details.
Tracking Progress and Reporting Results
To check-in on a developer's learning, progress status, and report on their score using the Secure Warrior API (v2). Please refer to the Secure Code Warrior API Center for details.
Alternatively, a Company Administrator can export a CSV of the Assessment and Course data from Secure Code Warrior metrics and reports available in the platform. The LMS can then be updated based upon a manual process or script. Please refer to this article for a list of available reports.
Q) Can we add Secure Code Warrior content to our SCORM compliant LMS?
A). SCORM packaging of our courses and assessments is a feature currently in active discovery.