DevSecOps Essentials

By John David Marx

Learn about the DevSecOps process and how to secure environments. This course also includes best practices.

6 hours
  • 28 Lessons
  • 3 Hands-On Labs

About the course

This course covers the DevSecOps process with an emphasis on securing both legacy and hybrid cloud environments. Best practices for security are covered in a conventional Continuous Integration and Continuous Deployment (CI/CD) pipeline.

  • Chapter 1 7 Lessons Introduction 41:20

    An Important Note About A Cloud Guru and Linux Academy Courses

    1:19

    About The Author

    0:36

    About The DevSecOps Essentials Course

    7:35

    An Overview of DevSecOps

    8:48

    Cyber Security Standards and Concepts (Part 1)

    11:28

    Cyber Security Standards (NIST Intelligence NVD and NCP Demo)

    5:44

    Identity and Access Management

    5:50
  • Chapter 2 6 Lessons Secure Software Onboarding 53:58

    Clean Repositories

    7:58

    Securing Public Repositories

    14:28

    Secure Containerization

    12:56

    Docker Trusted Repositories

    9:34

    Docker Bench

    9:02

    Using Docker Bench to Enhance Container Security

    0:00 Hands-On Lab
  • Chapter 3 8 Lessons Secure Build Automation 1:07:54

    Automated Provisioning with PaaS Tooling

    4:24

    Automated Provisioning with PaaS Tooling (OpenShift Demo)

    11:57

    Securing The Automated Build

    8:12

    Securing The Automated Build (Jenkins Pipeline Demo)

    9:20

    Vulnerability Detection and Remediation

    16:23

    Vulnerability Detection and Remediation (OWASP Dependency Check Demo)

    12:54

    Secure Staging

    4:44

    OWASP Dependency Check Lab

    0:00 Hands-On Lab
  • Chapter 4 1 Lesson Release Gating 12:15

    The 16 Gates

    12:15
  • Chapter 5 2 Lessons Continuous Delivery Release Automation 18:28

    Automated Deployment

    11:20

    Configuration Management

    7:08
  • Chapter 6 3 Lessons Production Monitoring and Ongoing Detection and Remediation 14:21

    Production Monitoring

    5:30

    Dashboards and Automated Vulnerability Detection

    8:51

    OWASP ZAP (Zed Attack Proxy) Lab

    0:00 Hands-On Lab
  • Chapter 7 1 Lesson Conclusion 5:01

    Summation and Next Steps

    5:01

What are Hands-on Labs

What's the difference between theoretical knowledge and real skills? Practical real-world experience. That's where Hands-on Labs come in! Hands-on Labs are guided, interactive experiences that help you learn and practice real-world scenarios in real cloud environments. Hands-on Labs are seamlessly integrated in courses, so you can learn by doing.

Get Started
Who’s going to be learning?
Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!