DevSecOps Engineering (DSOE)™

In this course, students will gain a solid understanding of the leadership requirements for successful DevOps adoption at both the tactical and strategic levels for those who help design, influence, implement and motivate the cultural transformation.

Skip to Available Dates

Learning Objectives

- The Golden Circle

  • Understanding organizational culture and organizational change
  • Conway’s Law and its influence on DevOps and systems thinking
  • Strategies for leading cultural transformations
  • Evolving silos into flat, team based organizations
  • Managing conflict
  • Creating feedback loops
  • Creating learning environments
  • Avoiding change fatigue
  • Managing conflict
  • Communication and collaboration strategies
  • Meaningful metrics
  • Resourcing for DevOps
  • Demonstrating DevOps ROI
  • Critical success factors
  • Getting started

     

    Course Details

    Course Outline

    1 - Course Introduction
  • Course Goals
  • Course Agenda
  • 2 - Why DevSecOps
  • Key Terms and Concepts
  • Why DevSecOps is important
  • 3 Ways to Think About DevOps+Security
  • Key Principles of DevSecOps
  • 3 - Culture and Management
  • Key Terms and Concepts
  • Incentive Model
  • Resilience
  • Organizational Culture
  • Generativity
  • Erickson, Westrum, and LaLoux
  • Exercise: Influencing Culture
  • 4 - Strategic Considerations
  • Key Terms and Concepts
  • How Much Security is Enough?
  • Threat Modeling
  • Context is Everything
  • Risk Management in a High-velocity World
  • Exercise: Measuring For Success
  • 5 - General Security Considerations
  • Avoiding the Checkbox Trap
  • Basic Security Hygiene
  • Architectural Considerations
  • Federated Identity
  • Log Management
  • 6 - IAM: Identity & Access Management
  • Key Terms and Concepts
  • IAM Basic Concepts
  • Why IAM is Important
  • Implementation Guidance
  • Automation Opportunities
  • How to Hurt Yourself with IAM
  • Exercise: Overcoming IAM Challenges
  • 7 - Application Security
  • Application Security Testing (AST)
  • Testing Techniques
  • Prioritizing Testing Techniques
  • Issue Management Integration
  • Threat Modeling
  • Leveraging Automation
  • 8 - Operational Security
  • Key Terms and Concepts
  • Basic Security Hygiene Practices
  • Role of Operations Management
  • The Ops Environment
  • Exercise: Adding Security to Your CI/CD Pipeline
  • 9 - Governance, Risk, Compliance (GRC) and Audit
  • Key Terms and Concepts
  • What is GRC?
  • Why Care About GRC?
  • Rethinking Policies
  • Policy as Code
  • Shifting Audit Left
  • 3 Myths of Segregation of Duties vs. DevOps
  • Exercise: Making Policies, Audit and Compliance
  • 10 - Logging, Monitoring and Response
  • Key Terms and Concepts
  • Setting Up Log Management
  • Incident Response and Forensics
  • Threat Intelligence and Information Sharing
  • 11 - Course Review
  • Where We Started
  • What We Covered
  • Key Reminders of What’s Important
  • Exercise: Creating a Personal Action Plan
  • 12 - Exam Preparations
  • Exam Requirements, Question Weighting and
  • 13 - Terminology List
  • Sample Exam Review
  • Actual course outline may vary depending on offering center. Contact your sales representative for more information.

    Who is it For?

    Target Audience

    This course is intended for:

    Anyone starting or leading a DevOps cultural transformation program

    Anyone interested in modern IT leadership and organizational change approaches

    Business Analysts

    Business Stakeholders

    Consultants

    DevOps tool providers

    IT Operations Managers

    IT Leadership

    Practitioners and change agents

    Project Managers

    Systems Integrators

    Team Leaders, Managers, Directors

    Tool Suppliers

    DevSecOps Engineering (DSOE)™

    $1,495
    Course Length : 2 Days (16 Hours)
     

    1. Choose a Date | 2. Click Enroll Now

    Need Help Picking the Right Course? Give us a call! 206-207-0714