Course Outline
Introduction
- How DevOps introduces new security risks for organizations
- The trade-offs of agility, speed, and decentralized control
Limits of Traditional Security Tools
- Static security policies
- Rigid firewall rules
- Insufficient API integration
- Limited visualization capabilities
Establishing a DevOps-Ready Security Program
Aligning Security with Business Goals
Eliminating Security Bottlenecks
Implementing Comprehensive Visibility
Standardizing Security Configurations
Integrating Sensors into Applications
- Interactive Application Security Testing (IAST)
- Runtime Application Self-Protection (RASP)
Enabling Security Data Exchange via RESTful APIs
Dynamic Scaling and Micro-Perimeterization of Security Controls
Granular, Per-Resource Security Policies
Automating Attack Simulations on Pre-Production Code
Continuous Testing of Production Environments
Securing Web Applications through an Agile/DevOps Lens
Protecting Containers and Cloud Infrastructure
Adopting Next-Generation Automated Security Tools
The Future of DevOps and Its Strategic Security Role
Summary and Conclusion
Requirements
- Experience with DevOps.
- Fundamental knowledge or interest in security.
Target Audience
- DevOps engineers
- Security engineers
Testimonials (2)
Craig was extremely involved in the training, always making sure we are paying attention, adapted the examples to our day-to-day activities and always provided an answer when asked, even if the information was not added in the presentation.
Ecaterina Ioana Nicoale - BOOKING HOLDINGS ROMANIA SRL
Course - DevOps Foundation®
High level of commitment and knowledge of the trainer
