DevOps Security Considerations: DevSecOps Principles

DevOps | Intermediate

11 videos | 56m 25s
Includes Assessment
Earns a Badge

Explore core concepts, benefits, and different phases of DevSecOps in this 11-video course, which compares DevOps with DevSecOps. In this course, learners will explore the prominent DevSecOps tools that are used to integrate security throughout the DevOps pipeline and illustrate the DevSecOps maturity model. Watch demonstrations of how to integrate security and testing into DevSecOps environment. Learn how to secure Jenkins secrets to store and manage credentials; to use Jenkins OAuth plugin to securely pull from GitHub (a Git repository hosting company); and to use pen test tool to conduct penetration testing on deployed applications. Explore the prominent categories of tools provided by OWASP (Open Web Application Security Project) to secure applications. OWASP comes with Top 10 Issue Ruleset, and provides proper guidelines to ensure that those issues are taken care of when applications are written. Other key topics include Jenkins credentials, Static Application Security Testing (SAST), and Dynamic Application Security Testing (DAST).

WHAT YOU WILL LEARN

discover the key concepts covered in this course

compare DevOps and DevSecOps and describe the benefits of adopting the DevSecOps paradigm

list the essential phases of the DevSecOps workflow and describe the critical checklists that can help secure DevOps implementations

describe DevSecOps tools that are used by development teams to integrate security throughout the DevOps pipeline

describe the DevSecOps Maturity Model and the dimensions that can help automate security checks

describe how security and testing can be integrated into a DevSecOps environment without compromising speed, security, or quality
use the Jenkins OAuth plugin to securely pull from GitHub

recall best practices for securing Jenkins Secrets to store and manage credentials

list the categories of tools provided by OWASP to secure applications

use penetration testing tools to conduct penetration testing on deployed application to identify vulnerabilities

summarize the key concepts covered in this course

IN THIS COURSE

1m 8s

FREE ACCESS
3m 40s

In this video, you will learn how to compare DevOps and DevSecOps and describe the benefits of adopting the DevSecOps paradigm. FREE ACCESS
3. Phases of the DevSecOps Workflow

12m 52s

After completing this video, you will be able to list the essential phases of the DevSecOps workflow and describe the critical checklists that can help secure DevOps implementations. FREE ACCESS
4. DevSecOps Tools

7m 34s

Upon completion of this video, you will be able to describe DevSecOps tools that are used by development teams to integrate security throughout the DevOps pipeline. FREE ACCESS
5. DevSecOps Maturity Model

7m 20s

After completing this video, you will be able to describe the DevSecOps Maturity Model and the dimensions that can help automate security checks. FREE ACCESS
6. DevSecOps Best Practices

5m 24s

Upon completion of this video, you will be able to describe how security and testing can be integrated into a DevSecOps environment without compromising speed, security, or quality. FREE ACCESS
7. Jenkins OAuth

5m 4s

In this video, find out how to use the Jenkins OAuth plugin to securely pull from a GitHub repository. FREE ACCESS
8. Managing Jenkins Credentials

3m 26s

After completing this video, you will be able to recall best practices for securing Jenkins Secrets and storing and managing credentials. FREE ACCESS
9. OWASP Tools

6m 16s

Upon completion of this video, you will be able to list the categories of tools provided by OWASP to secure applications. FREE ACCESS
10. Penetration Testing

2m 4s

In this video, find out how to use penetration testing tools to conduct penetration testing on deployed applications to identify vulnerabilities. FREE ACCESS
11. Course Summary

1m 38s

FREE ACCESS

EARN A DIGITAL BADGE WHEN YOU COMPLETE THIS COURSE

Skillsoft is providing you the opportunity to earn a digital badge upon successful completion on some of our courses, which can be shared on any social network or business platform.

Digital badges are yours to keep, forever.

Course Your DevOps Journey: Tools and Automation

Course Software Testing for DevOps: DevOps Testing Pipeline

Book Implementing DevSecOps with Docker and Kubernetes: An Experiential Guide to Operate in the DevOps Environment for Securing and Monitoring Container Applications, First Edition

PEOPLE WHO VIEWED THIS ALSO VIEWED THESE

Course CloudOps: Infrastructure as Code

Course Embracing Agile at Scale

Course DevOps Smart Failure: Fail Fast & DevOps

Get Started

Sharpen your skills. Upgrade your career. Find the right learning path for you, based on your role and skills. Take part in hands-on practice, study for a certification, and much more - all personalized for you.

*Not included: Compliance, Leadership Development Program content, and Engineering books

Your content + our content + our platform = a path to learning success

Using our learning experience platform, Percipio, your learners can engage in custom learning paths that can feature curated content from all sources.

Learn More

Aspire to something bigger

Aspire Journeys are guided learning paths that set you in motion for career success.

Browse Aspire Journeys

Explore a world of live learning with Global Knowledge

Choose from convenient delivery formats to get the training you and your team need - where, when and how you want it.

Browse Live Learning

IT Skills & Salary Report

ESG Impact Report

DevOps Security Considerations: DevSecOps Principles

WHAT YOU WILL LEARN

IN THIS COURSE

EARN A DIGITAL BADGE WHEN YOU COMPLETE THIS COURSE

YOU MIGHT ALSO LIKE

PEOPLE WHO VIEWED THIS ALSO VIEWED THESE