Home > Trainings > DevSecOps Foundation
DevSecOps Foundation
Learn the purpose, benefits, concepts, and vocabulary of DevSecOps including DevOps security strategies and business benefits.
Features
Two Days
16 hours of Instructor-led training classes
Case Study
Share relevant Industry Insights
By Practioners
Shares real-world experience
Course Objective
The learning objectives include a practical understanding of:
- The purpose, benefits, concepts, and vocabulary of DevSecOps
- How DevOps security practices differ from other security approaches
- Business-driven security strategies and Best Practices
- Understanding and applying data and security sciences
- Integrating corporate stakeholders into DevSecOps Practices
- Enhancing communication between Dev, Sec, and Ops teams
- How DevSecOps roles fit with a DevOps culture and organization
Course Agenda
Day 01 Module 1:
- Realizing DevSecOps Outcomes
- Origins of DevOps
- Evolution of DevSecOps
- CALMS
- The Three Ways
Day 01 Module 2:
- Defining the Cyber Threat Landscape
- What is the Cyber Threat Landscape?
- What is the threat?
- What do we protect from?
- What do we protect, and why?
- How do I talk to security?
Day 01 Module 3:
- Building a Responsive DevSecOps Model
- Demonstrate Model
- Technical, business and human outcomes
- What’s being measured?
- Gating and thresholding
Day 01 Module 4:
- Integrating DevSecOps Stakeholders
- The DevSecOps State of Mind
- The DevSecOps Stakeholders
- What’s at stake for who?
- Participating in the DevSecOps model
Day 02 Module 5:
- Establishing DevSecOps Best Practices
- Start where you are
- Integrating people, process and technology and governance
- DevSecOps operating model
- Communication practices and boundaries
- Focusing on outcomes
Day 02 Module 6:
- Best Practices to Get Started
- The Three Ways
- Identifying target states
- Value stream-centric thinking
Day 02 Module 7:
- DevOps Pipelines and Continuous Compliance
- The goal of a DevOps pipeline
- Why continuous compliance is important
- Archetypes and reference architectures
- Coordinating DevOps Pipeline construction
- DevSecOps tool categories, types and examples
Day 02 Module 8:
- Learning Using Outcomes
- Security Training Options
- Training as Policy
- Experiential Learning
- Cross-Skilling
- The DevSecOps Collective Body of Knowledge
- Preparing for the DevSecOps Foundation certification exam
Exam & Certification
Number of questions: 40 multiple choice questions
Pass mark: 65% (26 out of 40)
Open book/notes: no
Exam duration: 90 minutes (125 minutes if English is not a candidate’s native tongue)
FAQs
Are there any pre-requisites for this course?
- Completion of pre-class assignment
- Familiarity with IT software development and operations responsibilities
How do I need to take the exam?
TaUB Solutions will request the examinations together with your registration. The exam will be taken at the end of the course. Results are available within 5 working days.
