DevSecOps - Build and Release Secure Software Faster

Overview Steps Author

DifficultyBeginner

AVG Duration16h

Students742

Ratings

4.2/5

Content

83112

Description

In todays climate of data breaches and hacks - security has never been more paramount, more so if you're building and deploying at high velocity your own enterprise applications online. Enter DevSecOps!

DevSecOps promotes security across every part of the DevOps software lifecycle. Starting with development and extending all the way through into operations, security becomes everyones responsibility, all of the time.

undefined

This Learning Path is your one-stop guide to mastering DevSecOps. When it comes to managing, maintaining, and automating security, you'll want access to the right security tools for the right jobs, those that ultimately ensure your enterprise applications remain secure.

Learning Objectives

Deepen your knowledge of the DevSecOps workflow and mantra
Know which security tool to use and when to use it

Intended Audience

Anyone interested in learning about DevSecOps
Software Engineers and Developers
Operations and SREs

Prerequisites

Basic understanding of DevOps
Basic understanding of software development
Basic understanding of the software development life cycle

Content Outline

This Learning Path provides 16+ hours of instructional content delivered using both instructional video lectures and hands-on lab exercises.

Certificate

Your certificate for this learning path

Training Content

1

Course - Intermediate - 1h 13m

DevOps Playbook Part 1

This course introduces you to the DevOps Playbook Part 1.

2

Course - Advanced - 50m

DevOps Playbook Part 2

This course introduces you to the DevOps Playbook Part 2.

3

Resource - Beginner - 10m

DevOps Glossary of Terms

This glossary provides an extensive list of terms related to the subject of DevOps.

4

Course - Beginner - 20m

1. Understanding Cyber Security

This course will introduce some of the core themes of cyber security, followed by two software simulations.

5

Hands-on Lab - Intermediate - 1h 30m

Create a Jenkins CICD Pipeline with SonarQube Integration to perform Static Code Analysis

In this lab, you will launch a Jenkins and SonarQube CICD environment using Docker containers on a provided EC2 instance.

Go to hands-on lab

6

Hands-on Lab - Intermediate - 1h

Static Code Analysis Within CI/CD Pipelines

Integrate static code analysis within a three-stage AWS CodePipeline CI/CD pipeline to prevent vulnerabilities from making it into production in this Lab.

Go to hands-on lab

7

Hands-on Lab - Intermediate - 2h

Static Analysis and Alerting for Infrastructure as Code

Explore the benefits of static code analysis for infrastructure as code, specifically Terraform, and be alerted when the analysis detects an issue in this Lab.

Go to hands-on lab

8

Hands-on Lab - Intermediate - 1h 15m

Protect Your Code Against Attacks With Gauntlt

Learn how to use Gauntlt for security testing and protect your code against attacks with Guantlt by embedding it into a continuous integration pipeline.

Go to hands-on lab

9

Course - Intermediate - 1h 10m

Managing Infrastructure With Terraform

In this course, you'll learn about Terraform's core concepts including HashiCorp Configuration Language, providers, resources, and state.

10

Course - Intermediate - 17m

Infrastructure to Code with Terraformer

This course explores the Go-written tool “Terraformer” — a CLI level tool that allows you to easily Terraform already existing resources in your environment.

11

Hands-on Lab - Advanced - 40m

Testing Terraform Code with Terratest

Develop a test to validate a Terraform module using Terratest, a popular Golang library for testing Terraform code.

Go to hands-on lab

12

Course - Intermediate - 1h 8m

Administering Kubernetes Clusters

This Administering Kubernetes Clusters course covers the many networking and scheduling objectives of the Certified Kubernetes Administrator (CKA) exam curriculum.

13

Course - Intermediate - 47m

Kubernetes Patterns for Application Developers

This course covers many of the configuration, multi-container pods, and services & networking objectives of the Certified Kubernetes Application Developer (CKAD) exam curriculum.

14

Hands-on Lab - Beginner - 1h 30m

Create Kubernetes Layer-7 Network Policies using Cilium CNI

This lab is designed to show you how to install and setup Kubernetes layer-7 Network Policies using Cilium.

Go to hands-on lab

15

Hands-on Lab - Intermediate - 1h 15m

Configure Traffic Routing Using Istio

Istio's traffic routing rules let you easily control the flow of traffic and API calls to and from deployed cluster resources. Learn how to use Istio to perform traffic routing to a pair of sample web applications, V1 and V2, deployed within a Kubernetes cluster.

Go to hands-on lab

16

Hands-on Lab - Intermediate - 2h 30m

Monitoring K8s with the Kubernetes Dashboard, Prometheus, and Grafana

In this hands-on lab, you'll learn how to set up an effective monitoring solution using the Kubernetes Dashboard, Prometheus, and Grafana.

Go to hands-on lab

17

Resource - Beginner - 10m

OWASP Top 10: Security Misconfiguration

18

Resource - Beginner - 15m

OWASP Top 10 Cheat Sheet

An introduction to the Open Web Application Security Project (OWASP) list of the top 10 most critical risks to web applications

19

Hands-on Lab - Intermediate - 1h

OWASP Exercises: SQL Injection

This lab shows how to manage the security level of a DVWA application and how to perform a SQL injection to a DVWA application.

Go to hands-on lab

20

Hands-on Lab - Intermediate - 1h

OWASP Exercises: Cross-Site Scripting Attack

In this lab, you'll learn how to navigate through DVWA to perform an XSS attack to retrieve a session cookie.

Go to hands-on lab

21

Hands-on Lab - Intermediate - 1h

OWASP Exercises: Exploiting the Heartbleed Bug

In this lab, you'll perform the Heartbleed attack using the MetaSploit Framework in order to dump the contents of a vulnerable webserver using an unpatched version of OpenSSL.

Go to hands-on lab

22

Course - Intermediate - 1h 44m

HashiCorp Vault

This course will enable you to recognize, explain, and implement the services and functions provided by the HashiCorp Vault service.

23

Hands-on Lab - Intermediate - 45m

Configuring Vault to Use LDAP Authentication

Learn how to configure Vault to use your organization's LDAP identities and groups for authentication without duplicating usernames, passwords, or memberships.

Go to hands-on lab

24

Exam - 30m

Final Exam - DevSecOps

Final Exam - DevSecOps

About the Author

Jeremy Cook

Content Lead Architect

Students71089

Labs44

Courses105

Learning paths53

Jeremy is a Content Lead Architect and DevOps SME here at Cloud Academy where he specializes in developing DevOps technical training documentation.

He has a strong background in software engineering, and has been coding with various languages, frameworks, and systems for the past 25+ years. In recent times, Jeremy has been focused on DevOps, Cloud (AWS, GCP, Azure), Security, Kubernetes, and Machine Learning.

Jeremy holds professional certifications for AWS, GCP, and Kubernetes.

Covered Topics

Continuous Integration Security attacks Business Suites DevOps Security Atlassian