DevSecOps Foundation

Prevent data breaches and grow your teams’ knowledge on data privacy regulations. DevSecOps Foundation helps your team to prioritize security and compliance measures into everyday workflows.

Buy $9,900.00 Free Preview

Watch Intro Video

Course curriculum

1. 1.1 Origins of DevOps
2. 1.2 Evolution of DevSecOps
3. Discussion - Does security slow us down?
4. 1.3 Other Frameworks
5. Case Story - Aetna
6. 1.4 CALMS
7. Video - DevSecOps: What is it? Why is it taking over security?’ with Shannon Lietz (19:18)
  FREE PREVIEW
8. 1.5 The Three Ways
9. Exercise - Understanding and influencing an organization
10. Module Quiz
1. Video - ‘The Industrial Cyberthreat Landscape: 2019 Year in Review’ with Robert M Lee (09:16)
  FREE PREVIEW
2. 2.1 Storytime and Outcomes
3. Discussion - What does Secure mean?
4. 2.2 What is the Cyber Threat Landscape?
5. 2.3 What is the threat?
6. Exercise - EoP Card Game
7. 2.4 What do we protect from?
8. 2.5 What do we protect, and why?
9. Case Story - Maersk
10. 2.6 How do I talk to security?
11. Module Quiz
1. 3.1 Model with components
2. Discussion - What do you want from security?
3. 3.2 Technical, business and human toll outcomes
4. Case Story - NCR
5. 3.3 What’s being measured? Integration, current state and delta
6. Video - ‘What is DevSecOps?’ with Dave Farley (19:11)
  FREE PREVIEW
7. 3.4 Gating and thresholding
8. 3.5 Incremental improvements
9. Exercise - Validate a responsive DevSecOps model
10. Module Quiz
1. 4.1 The DevSecOps State of Mind
2. 4.2 What “good” culture looks like
3. Video - ‘Lean and Agile Adoption with the Laloux Culture Model’ with Peter Green (09:21)
  FREE PREVIEW
4. 4.3 The DevSecOps Stakeholders
5. 4.4 What’s at stake for who?
6. Case Story - US Department of Defense
7. 4.5 People, process, technology and governance
8. Discussion - How can you influence your organization?
9. Exercise - Modeling stakeholder conversations - 'difficult questions'
10. Module Quiz
1. 5.1 Start where you are
2. 5.2 Integrating people, process, technology and governance
3. 5.3 Continuous Security for DevSecOps
4. Video - ‘The Rise of DevSecOps’ with Yvonne Wassenaar (14:58)
  FREE PREVIEW
5. 5.4 Onboarding process for stakeholders
6. Exercise - Wicked Questions
7. 5.5 Practices and outcomes
8. 5.6 Data driven decision making and response
9. Case Story - Comcast
10. Discussion - What are your worst practices?
11. Module Quiz
1. 6.1 Identifying target state
2. 6.2 Value stream-thinking
3. 6.3 Flow
4. 6.4 Feedback
5. 6.5 Learning
6. Case Story - Sentara Healthcare
7. Discussion - Value Stream Mapping Experiences
8. Exercise - Reference Architecture Analysis
9. Video - ‘Building Security into an Agile Cloud Transformation Project’ by Chris Rutter (24:57)
  FREE PREVIEW
10. Module Quiz
1. 7.1 The goal of a DevOps pipeline
2. Discussion - What are the goals of a DevOps pipeline?
3. 7.2 Why continuous compliance is important
4. Video - ‘Overview of DevSecOps’ by Nicolas Chaillan (6:24)
  FREE PREVIEW
5. 7.3 Archetypes and reference architectures
6. 7.4 Coordinating DevOps Pipeline construction
7. Case Story - World Bank Group
8. 7.5 DevSecOps tool categories, types and examples
9. Exercise - Explore SAST, DAST, IAST, SCA, CSA
10. Module Quiz
1. Video - https://youtu.be/o7-IuYS0iSE ‘Failure and The Third Way’ with Aaron Blythe (5:26)
  FREE PREVIEW
2. 8.1 Security Training Options
3. Discussion - 3 Ways to Free Learning
4. 8.2 Training as Policy
5. 8.3 Experiential Learning
6. 8.4 Cross-Skilling
7. Case Story - Ericson
8. 8.5 The DevSecOps Collective Body of Knowledge
9. 8.6 Preparing for the DevSecOps Foundation certification exam
10. 8.7 Next Steps
11. Exercise - Retrospective
12. Module Quiz
1. Feedback - your feedback is important to us, let us know how you feel about this learning.

About this course

$9,900.00
89 lessons
0 hours of video content

DevSecOps Foundation

Course curriculum

Workshop Introduction

1. Realizing DevSecOps Outcomes

2. Defining the Cyberthreat Landscape (CTL)

3. Building a Responsive DevSecOps Model

4. Integrating DevSecOps Stakeholders

5. Establishing DevSecOps Practices

6. Best Practices to Get Started

7. DevOps Pipelines and Continuous Compliance

8. Learning Using Outcomes

Course Feedback

About this course