DevSecOps: Pragmatic Implementation (Part 2)

This self-paced course provides learners with a framework-agnostic approach to pragmatically embed security within any software development lifecycle (SDLC) to foster safety, privacy, and trust in the digital environment. Additionally, this course explores the significance of secure deployment practices, such as secure coding, and the nuances of runtime security and incident management. Part 2 covers the last two stages of the SDLC: Delivery and Deployment, and Runtime. 

After completing this course, learners will be able to:

• Understand the significance of triggers and security in two stages of the SDLC
• Understand and implement secure deployment practices, including managing secrets, securing CI/CD pipelines, and applying system hardening techniques
• Explain the importance of runtime security and incident management, integrating chaos engineering principles for testing system resilience, and cloud security posture management (CSPM) techniques for enhanced cloud security

This course is a great fit for anyone in the following roles:

• Anyone involved in the management and operational functions of risk, information security and information technology
• CISOs, CIOs, CTOs, and those leading digital transformation initiatives
• Application, platform, and security engineers and architects 

Prerequisites:

Students must have an understanding of the following topics before taking this course:

• Basics of SDLC
• Introductory concepts of DevSecOps
• Fundamental knowledge of digital security practices

It is highly recommended that students complete the following course(s) before taking this one: 

• DevSecOps: Collective Responsibility
• DevSecOps: Bridging Compliance & Development
• DevSecOps: Automation