I’ve started reading a book on PHP security (but it’s really all theoretical not so much practical) and have it in my plan to read Chris Shiflett’s and Schenider’s blogs, but does anyone know of a formal course that I can attend or even get a certificate that proves I know how to write secure PHP code?

Edit: I got a lot of answers, some of which don’t answer my question. So I’m quoting ircmaxell’s comment because it really hits the point.

While I agree with the cert not
mattering (and that finding
vulnerabilities is the best way to
learn), I’m not sure that answers the
question. How should one go from not
knowing anything about security to the
point where they can do audits to be
able to find vulnerabilities

What I want to add though is that while I agree that experience is more important that certification, certification is not unimportant. It’s a quick proof that I know more than the high school hobbyist programmer from India who’s charging $30 for a full project.