DevSecOps: Bridging Compliance & Development

DevSecOps: Bridging Compliance & Development

Self-paced course. Learn how to bridge the compliance and development gap. Aligning compliance objectives and security measures, identifying inflection points, embedding, automating, measuring, and testing controls are also covered.

Cancel Apply

rate limit

Code not recognized.

About this course

Purchase of a course from CSA’s Knowledge Center ensures access to the material for up to one year from the date of purchase. This course is estimated to take approximately 1.5 hour(s) to complete. After completion, you will receive a certificate for 1.5 course hour(s) that may be submitted for possible Continuing Educational Credits.


This self-paced course covers key topics in addressing the gap between compliance and development, such as translating compliance objectives into security measures. Learners will also gain knowledge of identifying inflection points in the secure development lifecycle and embedding, automating, measuring, and testing controls.

After completing this course, learners will be able to:

  • Understand the cloud service provider’s and cloud service customer’s shared responsibilities in the DevSecOps environment 
  • Internalize a productive framework that will help translate compliance controls into DevSecOps policies, processes, and measures
  • Distinguish between point-in-time and continuous assessments
  • Identify the five stages of the secure development lifecycle
  • Explain why “shift-left” security practices improve security measures
  • Define the INVEST approach and how it is useful in creating security sprints
  • Explain the benefits of “as-code” (infrastructure as code, compliance as code, and policy as code) for DevOps and DevSecOps objectives

This course is a great fit for anyone in the following roles:

  • C-Suite (CEO, CTO, CISO, CIO)
  • Managers and Decision Makers
  • Cybersecurity Analysts
  • Security Engineers and Architects
  • Enterprise Architects
  • Security Administrators
  • Compliance Managers
  • Systems Engineers
  • Developers
  • Individuals involved in the functional areas such as:
    • Automation
    • DevOps
    • Quality assurance
    • Information security
    • Governance
    • Risk management
    • Internal audit
    • Compliance 

Prerequisites:

It is highly recommended that students complete the following course(s) before taking this one: 


For more information regarding the calculation of course length and Continuing Educational Credits, please refer to our FAQ.

Curriculum

  • Compliance & Development Overview
  • Compliance & Development Assessment
  • Techniques to Bring Silos Together
  • Tools Toward a Successful DevSecOps Project
  • Course Survey

About this course

Purchase of a course from CSA’s Knowledge Center ensures access to the material for up to one year from the date of purchase. This course is estimated to take approximately 1.5 hour(s) to complete. After completion, you will receive a certificate for 1.5 course hour(s) that may be submitted for possible Continuing Educational Credits.


This self-paced course covers key topics in addressing the gap between compliance and development, such as translating compliance objectives into security measures. Learners will also gain knowledge of identifying inflection points in the secure development lifecycle and embedding, automating, measuring, and testing controls.

After completing this course, learners will be able to:

  • Understand the cloud service provider’s and cloud service customer’s shared responsibilities in the DevSecOps environment 
  • Internalize a productive framework that will help translate compliance controls into DevSecOps policies, processes, and measures
  • Distinguish between point-in-time and continuous assessments
  • Identify the five stages of the secure development lifecycle
  • Explain why “shift-left” security practices improve security measures
  • Define the INVEST approach and how it is useful in creating security sprints
  • Explain the benefits of “as-code” (infrastructure as code, compliance as code, and policy as code) for DevOps and DevSecOps objectives

This course is a great fit for anyone in the following roles:

  • C-Suite (CEO, CTO, CISO, CIO)
  • Managers and Decision Makers
  • Cybersecurity Analysts
  • Security Engineers and Architects
  • Enterprise Architects
  • Security Administrators
  • Compliance Managers
  • Systems Engineers
  • Developers
  • Individuals involved in the functional areas such as:
    • Automation
    • DevOps
    • Quality assurance
    • Information security
    • Governance
    • Risk management
    • Internal audit
    • Compliance 

Prerequisites:

It is highly recommended that students complete the following course(s) before taking this one: 


For more information regarding the calculation of course length and Continuing Educational Credits, please refer to our FAQ.

Curriculum

  • Compliance & Development Overview
  • Compliance & Development Assessment
  • Techniques to Bring Silos Together
  • Tools Toward a Successful DevSecOps Project
  • Course Survey