Training DevOps Institute

Training goals

code: PC-DOI-DSOF | version: 2.1

As companies deploy code faster and more often than ever, new vulnerabilities are also accelerating. When the boss says, “Do more with less”, DevOps practices adds business and security value as an integral, strategic component. Delivering development, security, and operations at the speed of business should be an essential component for any modern enterprise.

Course topics covered include how DevSecOps provides business value, enhancing your business opportunities, and improving corporate value. The core DevSecOps principles taught can support an organizational transformation, increase productivity, reduce risk, and optimize resource usage.

This course explains how DevOps security practices differ from other approaches then delivers the education needed to apply changes to your organization. Participants learn the purpose, benefits, concepts, vocabulary and applications of DevSecOps. Most importantly, students learn how DevSecOps roles fit with a DevOps culture and organization. At the course’s end, participants will understand “security as code” to make security and compliance value consumable as a service.

No course would be complete without practical application and this course teaches the steps to integrate security programs from the developers and operators through the business C-level. Every stakeholder plays a part and the learning material highlights how professionals can use these tools as the primary means of protecting the organization and customer through multiple case studies, video presentations, discussion options, and exercise material to maximize learning value. These real-life scenarios create tangible takeaways participants can leverage upon their return to the office.

This course positions learners to pass the DevSecOps Foundation exam.

 

COURSE OBJECTIVES

The learning objectives include a practical understanding of:

  • The purpose, benefits, concepts, and vocabulary of DevSecOps
  • How DevOps security practices differ from other security approaches
  • Business-driven security strategies and Best Practices
  • Understanding and applying data and security sciences
  • Integrating corporate stakeholders into DevSecOps Practices
  • Enhancing communication between Dev, Sec, and Ops teams
  • How DevSecOps roles fit with a DevOps culture and organization

 

AUDIENCE

The target audience for the DevSecOps Foundation course are professionals including:

  • Anyone involved or interested in learning about DevSecOps strategies and automation
  • Anyone involved in Continuous Delivery toolchain architectures
  • Compliance Team
  • Business managers
  • Delivery Staff
  • DevOps Engineers
  • IT Managers
  • IT Security Professionals, Practitioners, and Managers
  • Maintenance and support staff
  • Managed Service Providers
  • Project & Product Managers
  • Quality Assurance Teams
  • Release Managers
  • Scrum Masters
  • Site Reliability Engineers
  • Software Engineers
  • Testers

Conspect Show list

  • Module 1: Realizing DevSecOps Outcomes
    • Origins of DevOps
    • Evolution of DevSecOps
    • CALMS
    • The Three Ways
  • Module 2: Defining the Cyberthreat Landscape
    • What is the Cyber Threat Landscape?
    • What is the threat?
    • What do we protect from?
    • What do we protect, and why?
    • How do I talk to security?
  • Module 3: Building a Responsive DevSecOps Model
    • Demonstrate Model
    • Technical, business and human outcomes
    • What’s being measured?
    • Gating and thresholding
  • Module 4: Integrating DevSecOps Stakeholders
    • The DevSecOps State of Mind
    • The DevSecOps Stakeholders
    • What’s at stake for who?
    • Participating in the DevSecOps model
  • Module 5: Establishing DevSecOps Best Practices
    • Start where you are
    • Integrating people, process and technology and governance
    • DevSecOps operating model
    • Communication practices and boundaries
    • Focusing on outcomes
  • Module 6: Best Practices to get Started
    • The Three Ways
    • Identifying target states
    • Value stream-centric thinking
  • Module 7: DevOps Pipelines and Continuous Compliance
    • The goal of a DevOps pipeline
    • Why continuous compliance is important
    • Archetypes and reference architectures
    • Coordinating DevOps Pipeline construction
    • DevSecOps tool categories, types and examples
  • Module 8: Learning Using Outcomes ○ Security Training Options
    • Training as Policy
    • Experiential Learning
    • Cross-Skilling
    • The DevSecOps Collective Body of Knowledge
    • Preparing for the DevSecOps Foundation certification exam
Download conspect training as PDF

Additional information

Prerequisites

Participants should have baseline knowledge and understanding of common DevOps definitions and principles.

Difficulty level
Duration 2 days
Certificate

Each participant receives a confirmation of completion an accredited training.

Successfully passing (65%) the 60-minute examination, consisting of 40 multiple-choice questions, leads to the candidate’s designation as DevSecOps Foundation (DSOF) certified. The certification is governed and maintained by DevOps Institute.

Trainer

Authorized PeopleCert Trainer

Additional informations

LEARNER MATERIALS

  • Sixteen (16) hours of instructor-led training and exercise facilitation
  • Digital Learner Manual (excellent post-class reference)
  • Participation in exercises designed to apply concepts
  • Sample documents, templates, tools and techniques
  • Access to additional sources of information and communities

Other training DevOps Institute | DevSecOps

Training thematically related

DevOps

Project Management

DevSecOps

Contact form

Please fill form below to obtain more info about this training.







* Fields marked with (*) are required !!!

Information on data processing by Compendium - Centrum Edukacyjne Spółka z o.o.

700 EUR

FORM OF TRAINING ?

 

TRAINING MATERIALS ?

 

EXAM ?

 

SELECT TRAINING DATE

    • General information
    • Guaranteed dates
    • Last minute (-10%)
    • Language of the training
    • English
Book a training appointment
close

Traditional training

Sessions organised at Compendium CE are usually held in our locations in Kraków and Warsaw, but also in venues designated by the client. The group participating in training meets at a specific place and specific time with a coach and actively participates in laboratory sessions.

Dlearning training

You may participate from at any place in the world. It is sufficient to have a computer (or, actually a tablet, or smartphone) connected to the Internet. Compendium CE provides each Distance Learning training participant with adequate software enabling connection to the Data Center. For more information, please visit dlearning.eu site

close

Paper materials

Traditional materials: The price includes standard materials issued in the form of paper books, printed or other, depending on the arrangements with the manufacturer.

Electronic materials

Electronic materials: These are electronic training materials that are available to you based on your specific application: Skillpipe, eVantage, etc., or as PDF documents.

Ctab materials

Ctab materials: the price includes ctab tablet and electronic training materials or traditional training materials and supplies provided electronically according to manufacturer's specifications (in PDF or EPUB form). The materials provided are adapted for display on ctab tablets. For more information, check out the ctab website.

Upcoming DevOps Institute training

Training schedule
DevOps Institute