TLG Learning
Search
  • Home
  • Course Catalog
    • AWS
    • CompTIA
    • F5 Networks
    • Microsoft Technical
    • Office 365 & Other End-user
    • Power BI
    • Specialty Courses
      • Cisco
      • Citrix
      • Juniper Networks
      • Open Source
      • Palo Alto Networks
      • Service/Project Management
      • Security
      • VMware
  • Solutions
    • Public/Open Enrollment Training
    • Private/Custom Training
    • Government Solutions
    • IT Career Services
    • Classroom Rentals
    • Consulting Services
  • About Us
    • Careers
    • Locations
      • Bellevue, WA
      • Seattle, WA
      • Your Home or Office
    • Our Guarantees
    • Terms and Conditions
    • Privacy Policy
  • Blog
  • My account
0
Your cart is empty. Go to Shop.
Home / Project/Service Management / Implementing DevSecOps

Implementing DevSecOps

= Guaranteed to run date

Dates are listed in Pacific Time Zone

Dates Locations
Mar 15 9:30 AM - Mar 17 1:30 PM Remote Live

$1,495.00

If you are looking for a way to include security testing in your pipeline and turn your DevOps practice into a DevSecOps practice, then this course is for you. You will learn how DevSecOps builds upon the principles and practices of DevOps and how to integrate security testing tools into the various stages of the pipeline. This course will give you hands-on practice with configuring and using these tools so that you will be prepared to introduce DevSecOps to your own organization.

SKU: IDSO Categories: 05, Project/Service Management Topic: DevOps Fundamentals
  • Description
  • Additional information
  • Reviews (0)

Description

Print Friendly, PDF & Email

Overview:

  • Learn how to build security into your DevOps process
  • Learn how to use security requirements to plan your testing efforts
  • Explore key aspects of security testing – web security, threat modeling, risk assessment
  • Learn how security testing can be effectively leveraged within a DevOps pipeline
  • Understand how DevSecOps builds upon DevOps practices
  • Understand how technical and automation skills can be leveraged in your DevSecOps efforts
  • Develop practical experience through the completion of hands-on exercises

Your organization has started moving toward a DevOps way of thinking and working, and you have started to set up a delivery pipeline. However, you realize that security testing is missing from your pipeline, and you know that testing for security early and often is an important part of ensuring that your system is free from vulnerabilities.

If you are looking for a way to include security testing in your pipeline and turn your DevOps practice into a DevSecOps practice, then this course is for you. You will learn how DevSecOps builds upon the principles and practices of DevOps and how to integrate security testing tools into the various stages of the pipeline. This course will give you hands-on practice with configuring and using these tools so that you will be prepared to introduce DevSecOps to your own organization.

Who Should Attend?
This course is appropriate for software professionals who are involved with development, testing, security, and operations and who want to incorporate security testing into their organization’s pipeline. Because this course has a heavy focus on hands-on exercises, it is most appropriate for practitioners and will not be tailored toward management or leadership.

Laptop Required
This class involves hands-on activities using sample software to better facilitate learning. Each student should bring a laptop with an SSH or PuTTY client preinstalled. Connection specifics and credentials will be supplied during class. Please verify permissions with your IT Admin before class. If you or your Admin have questions about the specific applications involved, contact our Support team.

Outline:

DevOps Refresher
Description
Purpose
Goals
Dev vs. Ops
DevOps Principles
Security Refresher
Definition of Information Security
History of Information Security
CIA++
State of Application Security
DevSecOps Overview
Definition
Relevant Terms
Purpose
Benefits and Drawbacks
Tool Types
Risk Assessment
Importance of Software Security
Understanding Risk
Risk Assessment Exercise
Threat Modeling
Microsoft STRIDE
Architectural and Design Reviews
Threat Modeling Exercise
Software Composition Analysis (SCA)
Description
Motivation
Tools
SCA Exercise
Static Application Security Testing (SAST)
What It Is
Why We Need It
Goals
Pros and Cons
Tools
SAST Exercise
Dynamic Application Security Testing (DAST)
What It Is
Goals
How DAST Tools Work
Pros and Cons
Tools
DAST Exercise

Log Management

Description
Motivation
Tools
Log Management Exercise
Monitoring
Description
Motivation
Tools
Monitoring Exercise
Security Information and Event Management (SIEM)
Description
Motivation
Tools
SIEM Exercise
Security Requirements Testing
Functional vs. Non-functional Requirements
Misuse and Abuse Cases
Testing Security Requirements
Security Requirements Exercise
Advanced Techniques: IAST, RASP, and HAST
What They Are
Goals
How These Tools Work
Pros and Cons
Tools
Penetration Testing
What It Is
When It Should be Performed
How It Works
Enumeration and Footprint Analysis
Tool Categories
Pen Testing Exercise

Additional information

Length

3 days

Guaranteed to run

No

Reviews

There are no reviews yet.

Only logged in customers who have purchased this product may leave a review.

Related products

  • Agile & DevOps Leadership Workshop

    $1,495.00
    Add to cart
  • Foundations of DevOps – ICAgile Certification

    $1,495.00
    Add to cart
  • DASA DevOps Fundamentals

    $1,895.00
    Add to cart

(425) 460-2200

Contact Us

Search Courses

Top TLG Courses

  • AWS
  • CompTIA
  • F5 Networks
  • Microsoft Technical
  • Office 365 & End-user
  • Power BI

Specialty Courses

  • Cisco
  • Citrix
  • Juniper Networks
  • Open Source
  • Palo Alto Networks
  • Project/Service Managment
  • Security
  • VMware

Recent Posts

  • New Year, New Deals!
  • Cyber Week Steals
  • Training and Development Manager of PCC Markets Recommends TLG Learning
  • I’m Interested in Knowledge Work
  • I’m Interested in IT Related Information
TLG Learning

Popular Links

Guaranteed to Run Classes
APN Partner Training

Client Resources

Exercise Files
Class Survey
© TLG Learning 2021
Print Friendly, PDF & Email

Contact Us (425) 460-2200

Print Friendly, PDF & Email

Thank you for using
Themify Popup

This is a sample pop up. A Themify theme or Builder Plugin (free) is recommended to design the pop up layouts.

Get Builder Watch Video