DevOps Institute/DevSecOps Engineering (DSOE)℠/DSOE℠

DevSecOps Engineering (DSOE)℠ Certification Training Course Overview

DevSecOps Engineering (DSOE) ℠ training course covers how DevSecOps gives the business estimation of DevOps and the capacity DevOps needs to empower the business and support an organizational transformation with the ultimate goal of increasing productivity, reducing risk, and optimizing cost in the organization. This course clarifies how DevOps security practices vary from other security approaches and provides the education needed to understand and apply data and security sciences.
 
The course is intended to train practical steps on how to integrate security programs into DevOps practices and highlights how experts can utilize information and security science as the primary means of protecting the organization and customer.
 
Audience:
  • Anyone interested in learning about DevSecOps strategies and automation
  • Anyone involved in Continuous Delivery toolchain architectures
  • Compliance Team
  • Delivery Staff
  • DevOps Engineers
  • IT Managers
  • IT Security Professionals, Practitioners, and Managers
  • Maintenance and support staff
  • Managed Service Providers
  • Project & Product Managers
  • Quality Assurance Teams
  • Release Managers
  • Scrum Masters
  • Site Reliability Engineers
  • Software Engineers
  • Testers
This course prepares you for Exam DSOE℠.

DevSecOps Engineering (DSOE)℠ (16 Hours) Download Course Contents

Live Virtual Classroom 1900
Group Training
18 - 19 Oct GTR 09:00 AM - 05:00 PM CST
(8 Hours/Day)

01 - 02 Nov GTR 09:00 AM - 05:00 PM CST
(8 Hours/Day)

06 - 07 Dec GTR 09:00 AM - 05:00 PM CST
(8 Hours/Day)

1-on-1 Training (GTR)
4 Hours
8 Hours
Week Days
Weekend

Start Time : At any time

12 AM
12 PM

GTR=Guaranteed to Run
Classroom Training (Available: London, Dubai, India, Sydney, Vancouver)
Duration : On Request
Fee : On Request
On Request
Special Solutions for Corporate Clients! Click here
Hire Our Trainers! Click here

Course Modules

Module 1: Course Introduction
  • Course Goals
  • Course Agenda
  • Exercise: Diagramming Your CI/CD Pipeline
Module 2: Why DevSecOps?
  • Key Terms and Concepts
  • Why DevSecOps is important
  • 3 Ways to Think About DevOps+Security
  • Key Principles of DevSecOps
Module 3: Culture and Management
  • Key Terms and Concepts
  • Incentive Model
  • Resilience
  • Organizational Culture
  • Generativity
  • Erickson, Westrum, and LaLoux
  • Exercise: Influencing Culture
Module 4: Strategic Considerations
  • Key Terms and Concepts
  • How Much Security is Enough?
  • Threat Modeling
  • Context is Everything
  • Risk Management in a High-velocity World
  • Exercise: Measuring For Success
Module 5: General Security Considerations
  • Avoiding the Checkbox Trap
  • Basic Security Hygiene
  • Architectural Considerations
  • Federated Identity
  • Log Management
Module 6: IAM: Identity & Access Management
  • Key Terms and Concepts
  • IAM Basic Concepts
  • Why IAM is Important
  • Implementation Guidance
  • Automation Opportunities
  • How to Hurt Yourself with IAM
  • Exercise: Overcoming IAM Challenges
Module 7: Application Security
  • Application Security Testing (AST)
  • Testing Techniques
  • Prioritizing Testing Techniques
  • Issue Management Integration
  • Threat Modeling
  • Leveraging Automation
Module 8: Operational Security
  • Key Terms and Concepts
  • Basic Security Hygiene Practices
  • Role of Operations Management
  • The Ops Environment
  • Exercise: Adding Security to Your CI/CD Pipeline
Module 9: Governance, Risk, Compliance (GRC) and Audit
  • Key Terms and Concepts
  • What is GRC?
  • Why Care About GRC?
  • Rethinking Policies
  • Policy as Code
  • Shifting Audit Left
  • 3 Myths of Segregation of Duties vs. DevOps
  • Exercise: Making Policies, Audit and Compliance Work with DevOps
Module 10: Logging, Monitoring, and Response
  • Key Terms and Concepts
  • Setting Up Log Management
  • Incident Response and Forensics
  • Threat Intelligence and Information Sharing
Module 11: Course Review
  • Where We Started
  • What We Covered
  • Key Reminders of What’s Important
  • Exercise: Creating a Personal Action Plan
Module 12: Exam Preparations
  • Exam Requirements, Question Weighting, and Terminology List
  • Sample Exam Review
Download Course Contents

Request More Information

Course Prerequisites
  • Basic Computer Knowledge.

After completion of this course; you will learn:

  • The purpose, benefits, concepts, and vocabulary of DevSecOps
  • How DevOps security practices differ from other security approaches
  • Business-driven security strategies
  • Understanding and applying data and security sciences
  • The use and benefits of Red and Blue Teams
  • Integrating security into Continuous Delivery workflows
  • How DevSecOps roles fit with a DevOps culture and organization