Overview What You Will Learn Curriculum Instructor

Course Overview

DevSecOps in the DevOps cycle helps in building security right from scratch into the design, into the code and into the deployment stages. It helps to enhance the efficiency of software security. The aim of DevSecOps is to bridge the gap between security and agility. 

In this course, you will be introduced to concepts of DevSecOps through continuous delivery. Before diving deep into the concept, you need to understand the challenges and constraints in DevOps like speed, design, cloud and container. Next, you will learn ways to inject security in DevOps like Shift Security Left, OWASP Proactive Controls, Secure by Default, Making Security Self-Service, Using Infrastructure as Code and the Honeymoon effect. Later the course will explain how to secure code in DevOps deployment. You will understand the lifecycle of continuous delivery and continuous integration, which is a controlled framework. 

Explore ways how to secure design by performing a risk assessment and learning aspects of writing and reviewing a secure code. You will be able to perform the practical implementation of Dynamic Scanning (DAST), Fuzzing and Continuous Delivery, Security in Unit and Integration Testing, Automated Attacks, Pen Testing and Bug Bounties and Vulnerability Management. In the end, you will be able to explore various mechanisms for securing the infrastructure and the process of production. The last topic would cover compliance that needs to be followed while writing the codes.

What You Will Learn

  • The importance of securing and protecting DevOps pipelines
  • The biggest threats to DevOps pipelines
  • The threats that exist to software
  • hardware
  • network
  • and cloud infrastructures
  • The tools and processes necessary for DevSecOps pipeline implementation
  • The practical steps necessary to protect your infrastructure while maintaining agility to react to stakeholder needs

Program Curriculum

  • High-level Overview of Course
  • Key Aspects of DevSecOps
  • Section Conclusion
  • $7 Million Cybersecurity Scholarship by EC-Council
  • Chapter 1 Quiz

  • Section Introduction
  • Term definition
  • Scope and Purpose
  • Process
  • Implementation and Stages
  • Benefits
  • Challenges and Constraints
  • Section Conclusion
  • Chapter 2 Quiz

  • Section Introduction
  • DevSecOps Concepts
  • The Problem that DevSecOps Solves
  • Benefits of DevSecOps
  • Overview of DevSecOps Implementation
  • Business Case Examples
  • Section Conclusion
  • Chapter 3 Quiz

  • Section Introduction
  • Using Infrastructure as Code
  • Secure by Default
  • Shift Security Left
  • OWASP Proactive Controls
  • Making Security Self-service
  • Honeymoon Effect
  • Section Conclusion
  • Chapter 4 Quiz

  • Section Introduction
  • Pen Testing
  • Security in Unit and Integration Testing
  • Dynamic Scanning (DAST)
  • Fuzzing and Continuous Delivery
  • Instituting Automated Attacks
  • Bug Bounties
  • Vulnerability Management
  • Section Conclusion
  • Chapter 5 Quiz

  • Section Introduction
  • Threat Modeling and Risk Assessment
  • Defining Security Requirements
  • Researching and Verifying Risk Mitigation
  • Section Conclusion
  • Chapter 6 Quiz

  • Section Introduction
  • Importance of Writing Secure Code
  • Manual Reviews
  • Automated Reviews
  • Compliance in Code Generation
  • Ensuring Supplier or Vendor Code is Secure
  • Section Conclusion
  • Chapter 7 Quiz

  • Section Introduction
  • Conducting a Network Security Audit
  • Training Staff
  • Limiting Access
  • Patches and Remediation
  • Tools and Support
  • Section Conclusion
  • Chapter 8 Quiz

  • Section Introduction
  • Physically Securing Hardware and Network Devices
  • Limit Access and Safeguard Passwords
  • Training and Governance
  • Section Conclusion
  • Chapter 9 Quiz

  • Overview of Major Concepts from Course
  • Resources for More Information
  • Thank You and Contact Information
Load more modules

Instructor

Brian Newman

Brian Newman has worked for the three largest telecommunications companies in the US over the last 30 years. His experience has been in both wireless and wireline networks, focusing on deploying systems, improving operations, and transforming business processes. He has certifications from the Project Management Institute, Scaled Agile, and Verizon in Lean Six Sigma. In 1998, he received a US Patent [#5,835,907], which supported the initial integration of GPS data and cellular networks, leading to the use of smartphone geolocation and mapping that is common around the world today. Newman sees 5G as genuinely transformational and, as such, it has to have security that will enable it to provide less latency, higher bandwidth, and support for millions of concurrent attached devices. He is deeply involved in building and constructing 5G networks that have the right infrastructure from Day 1.

Join over 1 Million professionals from the most renowned Companies in the world!

certificate

Empower Your Learning with Our Flexible Plans

Invest in your future with our flexible subscription plans. Whether you're just starting out or looking to enhance your expertise, there's a plan tailored to meet your needs. Gain access to in-demand skills and courses for your continuous learning needs.

Monthly Plans
Annual Plans
Save 20% with our annual plans!

Pro

Ideal for continuous learning, offering extensive resources with 600+ courses and diverse Learning Paths to enhance your skills.

$ 499.00
Billed annually or $59.00 billed monthly
Get Started Now
Start your 7-day trial for $1

What is included

  • 700+ Premium Short Courses
  • 50+ Structured Learning Paths
  • Validation of Completion with all courses and learning paths
  • New Courses added every month
Early Access Offer

Pro +

Experience immersive learning with Practice Labs, CTF Challenges, and exclusive EC-Council certifications for comprehensive skill-building.

$ 599.00
Billed annually or $69.00 billed monthly
Get Started Now
Start your 7-day trial for $1

Everything in Pro and

  • 800+ Practice Lab exercises with guided instructions
  • 150+ CTF Challenges with detailed walkthroughs
  • New Practice Labs and Challenges added every month
  • 3 Official EC-Council Essentials Certifications¹ (retails at $897!)
    Exclusive Bonus with Annual Plans

¹This plan includes Digital Forensics Essentials (DFE), Ethical Hacking Essentials (EHE), and Network Defense Essentials (NDE) certifications. No other EC-Council certifications are included.

Related Courses

  • Code Security with SonarQube

    Code Security with SonarQube

    Short Course

    Code Security with SonarQube

    DevSecOps

    Gain engineering confidence in your code through SonarQube

    $99.99

    Intermediate

    4 hr 0 m

  • DevOps Beginner to Advanced: Integrating DevOps with Cloud (Part 2)

    DevOps Beginner to Advanced: Integrating DevOps with Cloud (Part 2)

    Short Course

    DevOps Beginner to Advanced: Integrating DevOps with Cloud (Pa...

    DevSecOps

    Learn how to implement AWS, Docker, K8s, and N-Tier Projects ...

    $69.99

    Advanced

    10 hr 9 m

  • Infrastructure Testing with Azure DevOps

    Infrastructure Testing with Azure DevOps

    Short Course

    Infrastructure Testing with Azure DevOps

    DevSecOps

    Test, Automate, Validate, and Secure Your Infrastructure with...

    $49.99

    Intermediate

    4 hr 0 m

  • Alpine Linux for Starters

    Alpine Linux for Starters

    Short Course

    Alpine Linux for Starters

    DevSecOps

    Make the most of Alpine Linux for IoT, embedded devices, secu...

    $49.99

    Beginner

    4 hr 0 m

  • Building CI/CD Pipeline Using AWS CodePipeline

    Building CI/CD Pipeline Using AWS CodePipeline

    Short Course

    Building CI/CD Pipeline Using AWS CodePipeline

    DevSecOps

    Automate your software delivery process by building robust CI...

    $49.99

    Intermediate

    3 hr 29 m

  • Implementing CI with Jenkins & Maven

    Implementing CI with Jenkins & Maven

    Short Course

    Implementing CI with Jenkins & Maven

    DevSecOps

    Gain a deep understanding of implementing continuous integrat...

    $49.99

    Beginner

    3 hr 2 m

  • Mastering Mobile Application Development

    Mastering Mobile Application Development

    Short Course

    Mastering Mobile Application Development

    DevSecOps

    Mastering React Native: JavaScript Essentials, Core Concepts,...

    $49.99

    Intermediate

    3 hr 30 m

  • DevOps Beginner to Advanced: Introduction to DevOps

    DevOps Beginner to Advanced: Introduction to DevOps

    Short Course

    DevOps Beginner to Advanced: Introduction to DevOps

    DevSecOps

    Begin DevOps Career as an Absolute Beginner | Linux, AWS, Scr...

    $59.99

    Beginner

    10 hr 47 m

1 8