DevSecOps: Pragmatic Implementation (Part 1)

This self-paced course provides learners with a framework-agnostic approach to pragmatically embed security within any software development lifecycle (SDLC) to foster safety, privacy, and trust in the digital environment. Additionally, this course explores the significance of proactive security measures and provides a deep dive into the success factors for transformation. Part 1 covers the first three SDLC stages: Design and Architecture, Coding, and Integration and Test.

After completing this course, learners will be able to:

• Understand the significance of triggers and security in three stages of the SDLC
• Identify potential security threats, evaluate them, and then devise countermeasures
• Explain the value of proactive security measures, such as secure coding, threat modeling, and software composition analysis (SCA), to prevent vulnerabilities and ensure robust software design
• Summarize various methodologies and tools used to test applications, systems, and networks security, while underscoring the value of proactive security measures to prevent vulnerabilities, data breaches, and other security threats

This course is a great fit for anyone in the following roles:

• Anyone involved in the management and operational functions of risk, information security and information technology
• CISOs, CIOs, CTOs, and those leading digital transformation initiatives
• Application, platform, and security engineers and architects 

Prerequisites:

Students must have an understanding of the following topics before taking this course:

• Basics of SDLC
• Introductory concepts of DevSecOps
• Fundamental knowledge of digital security practices

It is highly recommended that students complete the following course(s) before taking this one: 

• DevSecOps: Collective Responsibility
• DevSecOps: Bridging Compliance & Development
• DevSecOps: Automation