Course:

DevOps Security in Action

The DevOps style of collaborative engineering can lead to many advantages for engineering teams. From improvements to the speed/frequency of deployment to an increase in awareness and quality.

Once your team has embraced this new style and culture, it’s time to bring security into the mix.

In this 2 day course we will look at the opportunities to engage security with your DevOps implemention, how these new practices can be achieved and the considerations that need to be made when bringing security into extremely fast paced delivery pipelines.

Pre-Requisites

This course is an Extension level course. All students are required to have a base level of security knowledge and may have attended an appropriate Foundation level course such as Security for Software Developers.

In addition, it is highly recommended that all students have basic practical experience with DevOps practices and approaches such as Continuous Deployment/Integration.

 
 

Syllabus

This course is aligns with the book “Agile Application Security” and provides a hands on introduction to the benefits, approaches and challenges of bringing security into a fast moving development life-cycle.

Topics include:

  1. Maintaining cadence and the limitations of more traditional gated security approaches

  2. Vulnerability management

  3. Quality assurance with automated tools

  4. Building around developer workflows with version control

  5. Monitoring and response-

  6. In-pipeline and out of pipeline approaches to security

  7. Growing security culture and maintaining change

This course is designed to be hands on and interactive. Lecture material is combined with a range of custom built labs to test students and let them experiment with the vulnerabilities in action.

Duration

2 days (08:30 - 16:30)

Level

Extension

SUITABLE FOR ROLES

Software Developers

Price per person

$1200 (excluding GST)