Compliance
If you like applying Compliance, every challenge here gives you a chance to practice it on a real industry brief.
- DesignAdvancedNew
Build a Multi-Tenant SaaS Foundation on Kubernetes
Design the multi-tenant model: namespace-per-tenant for compute isolation, per-tenant Postgres schemas inside a shared RDS instance for data, per-tenant S3 prefixes with bucket …
- Kubernetes
- Multi Tenancy
- Aws
Cloud Computing - AnalysisAdvancedNew
Penetration-Test the TLS Configuration of an Edge Fleet
Receive read-only access to a 50-node representative sample (anonymized). Scan with testssl.sh + Qualys SSL Labs (where reachable) + a custom Go tool you write to test specific …
- Tls
- Applied Cryptography
- Penetration Testing
Applied Cryptography - AnalysisAdvancedNew
OSS License Audit and Remediation Plan for a Series-B Dev-Tools Startup
Receive an SBOM (Software Bill of Materials) from the build pipeline (CycloneDX JSON) for 14 services and 3 SDKs. Run automated classification (Syft + ScanCode or FOSSA), then m…
- Oss Licensing
- Sbom
- Supply Chain
Open Source Contribution and Maintainership - CodeIntermediateNew
Structured Logging Migration for a Healthcare SaaS Monolith
Receive the current Lograge-flavored Rails logger and 3 sample log files (anonymized PHI). Design: a structured-log JSON schema (request_id, user_id, route, status, duration_ms,…
- Structured Logging
- Loki
- Phi Redaction
Software Observability Practice your coursework on real scenarios.
Every challenge is shaped from real industry context — not generic exercises. The work mirrors what your degree prepares you for.
Why Ewance
- DesignIntermediateNew
Vendor-Security Review Program for a Series-C SaaS
Design a 3-tier TPRM framework (critical / important / low-risk) with explicit classification criteria (data type, integration depth, downtime impact, regulatory scope). For eac…
- Third Party Risk
- Security Governance
- Compliance
Information Security Management and Governance - AnalysisAdvancedNew
GDPR + AI Act Compliance Assessment for an HR-Tech Vendor
Audit the candidate-screening product against: GDPR Articles 5, 6, 13, 14, 22, 25, 32, 35; AI Act high-risk-system obligations (Annex III - employment); plus the customer's spec…
- Compliance
- Privacy Regulation
- Gdpr
Information Security Management and Governance - DesignAdvancedNew
Author an Incident Response Playbook for a Fintech Startup
Author a 4-phase playbook (Prepare, Detect & Analyze, Contain/Eradicate/Recover, Post-Incident) covering 6 incident classes: data breach, ransomware, account takeover, payment-f…
- Incident Response
- Nist Sp 800 61
- Security Governance
Information Security Management and Governance - AnalysisAdvancedNew
Build a Risk Register for a Cross-Border Healthcare Provider
Run 8 structured interviews (CISO, IT director, clinical-systems lead, DPO, 4 clinic managers) to surface the top risk candidates. Map each risk against NIST SP 800-30 (threat s…
- Risk Management
- Nist Sp 800 30
- Security Governance
Information Security Management and Governance - Browse challenges
Explore role
Product Manager
Ship product that solves real user problems. Combine user research, prototyping, and stakeholder alignment to turn ambiguous briefs into measurable wins — the role at the centre of modern software teams.
- AnalysisAdvancedNew
Privacy-by-Design Review for a Smart-City Data Platform
Map the new module's end-to-end data flow (sensors -> ingestion -> analytics -> dashboards -> exports). Run a Privacy Impact Assessment against OECD privacy principles + per-ten…
- Privacy By Design
- Privacy Regulation
- Compliance
Information Security Management and Governance
How it works
From brief to credential, in six steps.
Step 01
Browse challenges aligned to your studies.
Step 02
Accept the one that fits your goals.
Step 03
Work through it with AI Copilot guidance.
Step 04
Submit for structured evaluation.
Step 05
Earn a verified credential.
Step 06
Add it to LinkedIn with one click.
Industry teams behind a decade of practitioner briefs
Hiring from this pool?
Sponsor a challenge and meet candidates through actual work.
Industry teams can shape briefs around the skills they hire for, then evaluate students on rubric-scored deliverables — not resumes.