1 – COURSE INTRODUCTION
- Course Goals
- Course Agenda
2 – WHY DEVSECOPS
- Key Terms and Concepts
- Why DevSecOps is important
- 3 Ways to Think About DevOps+Security
- Key Principles of DevSecOps
3 – CULTURE AND MANAGEMENT
- Key Terms and Concepts
- Incentive Model
- Resilience
- Organizational Culture
- Generativity
- Erickson, Westrum, and LaLoux
- Exercise: Influencing Culture
4 – STRATEGIC CONSIDERATIONS
- Key Terms and Concepts
- How Much Security is Enough?
- Threat Modeling
- Context is Everything
- Risk Management in a High-velocity World
- Exercise: Measuring For Success
5 – GENERAL SECURITY CONSIDERATIONS
- Avoiding the Checkbox Trap
- Basic Security Hygiene
- Architectural Considerations
- Federated Identity
- Log Management
6 – IAM: IDENTITY & ACCESS MANAGEMENT
- Key Terms and Concepts
- IAM Basic Concepts
- Why IAM is Important
- Implementation Guidance
- Automation Opportunities
- How to Hurt Yourself with IAM
- Exercise: Overcoming IAM Challenges
7 – APPLICATION SECURITY
- Application Security Testing (AST)
- Testing Techniques
- Prioritizing Testing Techniques
- Issue Management Integration
- Threat Modeling
- Leveraging Automation
8 – OPERATIONAL SECURITY
- Key Terms and Concepts
- Basic Security Hygiene Practices
- Role of Operations Management
- The Ops Environment
- Exercise: Adding Security to Your CI/CD Pipeline
9 – GOVERNANCE, RISK, COMPLIANCE (GRC) AND AUDIT
- Key Terms and Concepts
- What is GRC?
- Why Care About GRC?
- Rethinking Policies
- Policy as Code
- Shifting Audit Left
- 3 Myths of Segregation of Duties vs. DevOps
- Exercise: Making Policies, Audit and Compliance
10 – LOGGING, MONITORING AND RESPONSE
- Key Terms and Concepts
- Setting Up Log Management
- Incident Response and Forensics
- Threat Intelligence and Information Sharing
11 – COURSE REVIEW
- Where We Started
- What We Covered
- Key Reminders of What’s Important
- Exercise: Creating a Personal Action Plan
12 – EXAM PREPARATIONS
- Exam Requirements, Question Weighting and
13 – TERMINOLOGY LIST
– The Golden Circle
– Understanding organizational culture and organizational change
– Conway’s Law and its influence on DevOps and systems thinking
– Strategies for leading cultural transformations
– Evolving silos into flat, team based organizations
– Managing conflict
– Creating feedback loops
– Creating learning environments
– Avoiding change fatigue
– Managing conflict
– Communication and collaboration strategies
– Meaningful metrics
– Resourcing for DevOps
– Demonstrating DevOps ROI
– Critical success factors
– Getting started
No special prerequisites for this course provided. If you are unsure whether you might need to take another course first, please contact us to discuss.
Ten (10) business days’ notice is required to reschedule a class with no additional fees. Notify TOPTALENT LEARNING as soon as possible at 469-721-6100 or by written notification to info@toptalentlearning.com to avoid rescheduling penalties.
Please contact our team at 469-721-6100; we will gladly guide you through the online purchasing process.
You will receive a receipt and an enrollment confirmation sent to the email you submitted at purchase. Your enrollment email will have instructions on how to access the class. Any additional questions our team is here to support you. Please call us at 469-721-6100.
If a student is 15 minutes late, they risk losing their seat to a standby student. If a student is 30 minutes late or more, they will need to reschedule. A no-show fee will apply. Retakes are enrolled on a stand-by basis. The student must supply previously issued courseware. Additional fees may apply.
You will receive a ‘Certificate of Completion’ once you complete the class. If you purchased an exam voucher for the class, a team member from TOPTALENT LEARNING will reach out to discuss your readiness for the voucher and make arrangements to send it.
