Introduction to DevSecOps is designed for those that want to understand, apply and improve their DevSecOps skills. It addresses both the business of DevOps and the ability DevOps has to enable the business and support an organizational transformation as well as the need for DevSecOps pipelines. In this course students learn the major components in a DevOps (or DevSecOps) pipeline, security’s role in DevOps, as well as DevSecOps processes, tools, and techniques. Students learn how DevSecOps security practices differ from other security approaches and how security is woven into a DevOps pipeline. Integration of security programs into DevOps practices are also discussed. Other topics include CSA, SAST, DAST, and Security as Code.
- Basics of DevOps and DevSecOps
- Purpose, Benefits, Concepts and Vocabulary
- Components of the CI Pipeline
- Security as a DevOps Practice
- Secure SDLC
- DevSecOps Maturity Model
- Software Component Analysis (SCA)
- SAST (Static Analysis)
- DAST (Dynamic Analysis
- Infrastructure as Code
- Compliance as Code
Familiarity with core Linux commands is recommended but not required.
Duration3 Days | 6 Nights
Applies Towards the Following Certificates
- DevSecOps for Software Engineers and Architects Boeing Certificate : Choose any Two Courses
*Academic Unit eligibility to be determined by college/university in which you are enrolled in a degree seeking program.