DevSecOps Engineering Objective

Module 01: Why DevSecOps?

Module 02: Culture and Management

Module 03: Strategic Considerations

Module 04: General Security Considerations

Module 05: IAM: Identity & Access Management

Module 06: Application Security

Module 07: Operational Security

Module 08: Governance, Risk, Compliance (GRC) and Audit

Module 09: Logging, Monitoring, and Response

Detailed Syllabus:

Module 01: Why DevSecOps?

Key Terms and Concepts
Why DevSecOps is important
3 Ways to Think About DevOps+Security
Key Principles of DevSecOps

Module 02: Culture and Management

Key Terms and Concepts
Incentive Model
Resilience
Organizational Culture
Generativity
Erickson, Westrum, and LaLoux

Module 03: Strategic Considerations

Key Terms and Concepts
How Much Security is Enough?
Threat Modeling
Context is Everything
Risk Management in a High-velocity World

Module 04: General Security Considerations

Avoiding the Checkbox Trap
Basic Security Hygiene
Architectural Considerations
Federated Identity
Log Management

Module 05: IAM: Identity & Access Management

Key Terms and Concepts
IAM Basic Concepts
Why IAM is Important
Implementation Guidance
Automation Opportunities
How to Hurt Yourself with IAM

Module 06: Application Security

Application Security Testing (AST)
Testing Techniques
Prioritizing Testing Techniques
Issue Management Integration
Threat Modeling
Leveraging Automation

Module 07: Operational Security

Key Terms and Concepts
Basic Security Hygiene Practices
Role of Operations Management
The Ops Environment

Module 08: Governance, Risk, Compliance (GRC) and Audit

Key Terms and Concepts
What is GRC?
Why Care About GRC?
Rethinking Policies
Policy as Code
Shifting Audit Left
3 Myths of Segregation of Duties vs. DevOps

Module 09: Logging, Monitoring, and Response

Key Terms and Concepts
Setting Up Log Management
Incident Response and Forensics
Threat Intelligence and Information Sharing

If You Like What We Do Here On DevOpsConcept, You Should Consider:

Stay Connected to: Twitter | Facebook

Subscribe to our email updates: Sign Up Now

 

We are thankful for your support.