I am a programmer, doing mostly web development now, dealing also with securing the web applications in my line of work. I have reasonable knowledge of security matters, though not always staying up-to-date on the latest developments (mainly due to laziness and lack of time). I'm not doing any pen-testing and not plan to specialize of security only, though I of course want to keep my projects secured.
So, from this point of view, is it worth for me to do SANS training - I specifically mean training courses like DEV522 or SEC542? Would they add enough to my knowledge that it would justify a week spend on them (and the money of course :)? I took their free assessment test and made 92% without any preparation and in half of alotted time (missing ones I suspect are some acronyms that are outside of my line of work), but not sure if that means anything.
Especially interesting would be to hear from people of similar background that went to one of these courses or similar ones.
P.S. I understand this is somewhat subjective, but given the info on the background I think there are many people with similar background that may use such information. I just want to try and estimate the level of the course against the level of average security-conscious programmer.
P.P.S. For suspicious minds: I have nothing to do with SANS and don't know much about them, I'm posting the links only so it will be clear what is being asked about. But I like the way you think :)