Secure DevOps

Secure DevOps: Integrating security into your continuous delivery pipeline.

BOOK NOW

Secure DevOps

The Secure DevOps Training is the ideal solution for individuals and companies looking to implement DevOps in their organization and optimize their continuous delivery pipeline in terms of security.

In the Secure DevOps Training, you will have the opportunity to gain experience in setting up a continuous delivery pipeline and to design it interactively. In addition, you will learn about a variety of tools that can be integrated into it and that will help you check existing code for security vulnerabilities or misconfigurations.

Content

  • Introduction to DevOps
  • Working in DevOps
  • Security in DevOps
  • Secure Continuous Delivery
  • Security in Pre-Commit
  • Security in Commit (CI)
  • Security in Acceptance
  • Production
  • Operations
  • Challenge CI/CD Pipeline

Learning Objectives

After the Secure DevOps Training, you will be able to:

  • describe the origins of the DevOps movement,
  • list and explain the six main pillars of DevOps,
  • articulate the “Three Ways” of Kim, Humble, Debois, and Willis,
  • list the eight phases of DevOps and discuss the activities in the phases,
  • perform thread modeling using STRIDE,
  • name the benefits of IDE plugins,
  • give examples of client-side and server-side commit hooks and their characteristics,
  • concentrate on the essentials during peer reviews,
  • evaluate the capabilities of SAST,
  • pay attention to the essential aspects when managing dependencies,
  • list at least 3 DAST tools (including DAST & Infrastructure Scanning),
  • describe the 3 types of clouds and their characteristics,
  • list at least 2 tools for managing secrets, and
  • have a rudimentary DevOps continuous delivery pipeline up and running.

Details

  • Location: Oneconsult (Zurich, Bern, Munich) or as a company course on-site
  • Duration: 2 days
  • Costs: 4000 CHF excl. VAT
  • Target Group: The Secure DevOps training is suitable for software developers, administrators, system engineers, software testers, CISOs and security managers.

Booking

Optimize your DevOps continuous delivery pipeline and strengthen security throughout the entire development process! Fill out the form and we will contact you as soon as possible.

  • at Oneconsult or the client's premises
  • 2 days
  • Company course
You might also be interested in
Schwachstellenanalyse mit MITRE ATT&CK
Vulnerability Analysis With MITRE ATT&CK
Incident Response Plan Red Flags
The 7 Red Flags When Creating an Incident Response Plan
Unterscheidung zwischen Operational Technology (OT) und Information Technology (IT)
Distinction between Operational Technology and Information Technology

Don’t miss anything! Subscribe to our free newsletter.

Your security is our top priority – our specialists provide you with professional support.

Availability Monday to Friday 8:00 a.m. – 6:00 p.m (exception: customers with SLA – please call the 24/7 IRR emergency number).

Private individuals please contact your trusted IT service provider or the local police station.

  • What and who is affected?
  • Who discovered and reported the incident?
  • How and when was the incident noticed?
  • What did you observe?
  • What are you concerned about in connection with the incident?
  • What actions have already been taken?

For more information about our DFIR services here:

QR_CSIRT_2022_EN@2x
Add CSIRT to contacts