Individual training courses

Would you like a training course tailored to you and your organization’s needs? We offer a broad portfolio of training courses on software development compliance, OSGi, Bndtools, and data and process modeling. All training courses and course content can be adapted to the specific structure and situation of your organization.

The goal of our training courses is to transfer knowledge according to your requirements. Our core elements are thematically prepared training workshops conducted by practitioners with decades of application experience. Depending on the initial situation, additional services are also possible. If required, we can moderate an orientation workshop at your premises prior to the training, in which we analyze your individual situation and recommend suitable content and training structures. If you wish, we can also support you in the follow-up of your training with implementation workshops or help you to multiply the newly acquired skills in your organization.

We will be happy to prepare a suitable offer for you. For all inquiries or information on the subject of training, please contact: training[at]datainmotion.com

Training locations and format

To ensure an efficient transfer of knowledge, we aim for an optimum group size of approx. 15 people.

We conduct the workshops on the premises of your organization in order to establish the closest possible practical connection. If required, remote/online training is also possible, or we can invite you to our company in Jena (maximum 10 participants).

Our current range of training courses

  • Compliance in Software Development (3 days)
  • Dynamic, modular and distributed software architecture with OSGi (2 days)
  • OSGi development with Bndtools (1 day, can be combined with the OSGi course)
  • Practical modeling with UML and EMF in software development (2 days)
  • Modeling as a tool for digital transformation (2 days)

Compliance in Software Development

The EU Cyber Resilience Act (CRA), NIS-2, and national cybersecurity legislation place new legal obligations on manufacturers and operators of connected software: demonstrable security, SBOM creation, coordinated vulnerability disclosure, and reporting requirements. Our three-day course equips participants with the practical tools to meet these requirements and embed them permanently in their development practice – with a focus on hands-on group code reviews of production-like code in Java and TypeScript.

The course is deliberately designed for two audiences: developers gain technical depth and hands-on exercises; governance and compliance stakeholders gain the structured overview needed to steer and demonstrate regulatory compliance within their organization.

Target audience: Software developers, software architects, and IT specialists involved in the development or operation of connected products, as well as IT managers and security officers who need a structured overview of regulatory requirements and their organizational implementation.

Language: German (English on request)

Course content (3 days)

Day 1 – Foundations and planning:

  • Regulatory framework: EU CRA, NIS-2, GDPR, German IT Security Act 2.0
  • Standards: BSI TR-03187, BSI TR-02102, ISO/IEC 27001, OWASP ASVS L2+, NIST SSDF
  • Governance structures: responsibilities, reporting chains, risk management, and compliance obligations under CRA and NIS-2
  • Secure Software Development Lifecycle (SSDLC): Security by Design, threat modeling (STRIDE)
  • Architecture: Zero Trust, Defense in Depth, IAM (OIDC, OAuth2), cryptography per BSI TR-02102

Day 2 – Development, testing, and CI/CD:

  • Secure development: OWASP Top 10 with code examples (Java, TypeScript, Python, .NET)
  • Supply chain security: SBOM (CycloneDX, SPDX), dependency scanning, SLSA, license compliance
  • Testing and verification: SAST (SpotBugs, SonarQube, Semgrep), DAST (OWASP ZAP), secret scanning
  • CI/CD security: quality gates, container scanning (Trivy, Grype), artifact signing (Cosign, Sigstore)

Day 3 – Release, operations, and synthesis:

  • Deployment and vulnerability management: patch SLAs, coordinated disclosure, NIS-2 and CRA reporting obligations
  • AI in development and as a product feature: OWASP LLM Top 10, EU AI Act, ISO 42001
  • Synthesis and case studies: Log4Shell, SolarWinds/SUNBURST, xz-utils backdoor

Our training on OSGi and Bndtools

As one of the leading OSGi and Bndtools training providers in the German-speaking world, we offer hands-on training built on years of experience developing with and contributing to OSGi. Bnd and Bndtools are the optimal development tools for OSGi. As active developers of the Bndtools project, we provide participants with comprehensive insights into the use of Bnd to make it easier to get started or migrate.

OSGi

Introduction

A central aspect of our courses is teaching the core ideas of modularity and dynamics on which OSGi is based. They require a different way of thinking than non-modular systems. When applied correctly, this paradigm shift increases the quality and maintainability of the software and its architecture.

As active members of the OSGi Working Group and chairs of the associated Steering Committee, we have background and detailed knowledge of specifications relating to OSGi. This includes not only programming, but also topics such as architecture, product development, development processes, and tooling. Numerous organizations have already successfully completed our OSGi training courses.

In addition to presentations, our courses also include practical sections to actively learn and practise using the technology. Bndtools is used as tooling, as it simplifies the development process and makes it easier to get started.

Course content (2 days)

Day 1:

  • OSGi introduction – Dynamic and modular software with Java
  • OSGi Core and OSGi Framework
  • Modules and dynamic modules
  • Declarative Services and SCR – The tool to orchestrate services
  • Whiteboard Pattern / Event Admin – A powerful pattern for a service-based application

Day 2:

  • Configurable Systems – Configuration Admin and Configurator
  • Service Factories
  • Condition Services

Up to this point, the training follows the predefined structure. Subsequently, content specific to your organizational context is covered in greater depth. Following is an example of possible in-depth content:

  • Servlet Whiteboard
  • Connection to web applications – HTTP and JakartaRs Whiteboard
  • Distributed systems – remote services and remote service admin
  • Testing with OSGi
  • OSGi-fication of jars without OSGi metadata
  • Build tools for OSGi: Bndtools, Maven

Bndtools

Introduction

With the latest versions of Bnd, development is easier than ever before. In addition, Bnd enables the correct and instinctive handling of dynamics. This allows for an efficient and clean development process.

As active developers and users of Bnd and Bndtools, we provide insight into their use. From the local development environment to release builds on a CI server, Bnd can do it all. Embedding in both Maven and Gradle is an option.

In addition to presentations, our courses also include practical sections to actively learn and practise using the technology.

Course content (1 day)

  • Introduction to Bnd and Bndtools
  • Bnd Workspace and Workspace Templates
  • Bundle development and API baselining
  • Macros, exporters and libraries
  • Bnd Project Templates
  • CI and release processes
  • Bnd with Maven

Modeling in Software Development

Modeling is a central tool for precisely describing, designing, and evolving software systems. As long-standing developers and users of UML and the Eclipse Modeling Framework, we offer practice-oriented courses – from hands-on modeling techniques to the strategic use of modeling in transformation initiatives.

Practical modeling with UML and EMF in software development

Introduction

UML and the Eclipse Modeling Framework (EMF) enable software systems to be precisely described and evolved through model-driven development. The course combines conceptual foundations with concrete development scenarios and provides an introduction to model-driven development.

Target audience: Software developers and software architects

Course content (2 days)

  • UML fundamentals: class, sequence and component diagrams in a development context
  • Eclipse Modeling Framework (EMF): metamodeling, Ecore models and code generation
  • Model-driven development: transformations and tool integration
  • Practice: creating and linking models based on real development scenarios

Modeling as a tool for digital transformation

Introduction

This course is aimed at teams and decision-makers who want to use modeling as a strategic tool for analyzing, communicating, and steering transformation processes. The focus is on the practical use of models to capture current states, develop target architectures, and accompany transformation initiatives in a structured way.

Target audience: Project managers, architects, and decision-makers in digitalization initiatives

Course content (2 days)

  • Modeling as a communication tool: domain models, process models, system landscapes
  • Structuring digital transformation: as-is analysis, gap analysis, target architecture
  • Model-based requirements management and decision support
  • Practical workshop: modeling a real-world transformation scenario