DevSecOps Foundation

Topics covered in the course include how DevSecOps provides the business value of DevOps and the ability DevOps has to enable the business and support an organizational transformation with the ultimate goal of increasing productivity, reducing risk, and optimizing cost in the organization. This course explains how DevOps security practices differ from other security approaches and provide the education needed to understand and apply data and security sciences. Participants learn the purpose, benefits, concepts, and vocabulary of DevSecOps; particularly how DevSecOps roles fit with a DevOps culture and organization. At the end of this course, participants will understand using “security as code” with the intent of making security and compliance consumable as a service.

Course syllabus:

  1. Introduction

  2. Why DevSecOps?

  3. Culture and Management

  4. Strategic Considerations

  5. General Security Considerations

  6. IAM: Identity & Access Management

  7. Application Security

  8. Operational Security

  9. Governance, Risk, Compliance (GRC) and Audit

  10. Logging, Monitoring, and Response

  11. Exam Preparations