Home Specialist skills Security SEC534: Secure DevOps: A Practical Introduction
SEC534: Secure DevOps: A Practical Introduction
-
Learn the foundations and principles of DevOps, Continuous Delivery and Continuous Deployment
-
Know how to build security into Continuous Delivery and Continuous Deployment
-
Understand how to leverage Infrastructure as Code for secure configuration management and provisioning
-
Know of the security risks and challenges posed by containers and how to secure container technology
-
Learn how to automate compliance in DevOps, using the DevOps Audit Defence Toolkit
Overview
Off the shelf (OTS)
SEC534: Secure DevOps: A Practical Introduction explains the fundamentals of DevOps and how DevOps teams can build and deliver secure software. You will learn how DevOps principles, practices, and tools and how they can be leveraged to improve the reliability, integrity and security of systems.
Using lessons from successful DevOps security programs, this course will explain how Secure DevOps can be implemented. Students will gain hands-on experience using popular open-source tools such as Puppet, Jenkins, GitLab, Vault, Grafana, and Docker to automate Configuration Management ("Infrastructure as Code"), Continuous Integration (CI), Continuous Delivery (CD), containerisation, micro-segmentation, automated compliance ("Compliance as Code"), and Continuous Monitoring. The lab environment starts with a CI/CD pipeline that automatically builds, tests, and deploys infrastructure and applications. Leveraging the Secure DevOps toolchain, students perform a series of labs injecting security into the CI/CD pipeline using a variety of security tools, patterns, and techniques.
Delivery method
Virtual
Digital
Course duration
14 hours
Competency level
Working
Delivery method
-
Virtual
-
Digital
Course duration
14 hours
Competency level
-
Working
Spark login – Alpha testing