- An understanding of the DevOps process
- Basic working knowledge of Docker containers and Kubernetes orchestration
Audience
- DevOps professionals
DevSecOps is an extension of the DevOps methodology that integrates security practices into every stage of the development and operations lifecycle.
This instructor-led, live training (online or onsite) is aimed at intermediate-level DevOps professionals who wish to integrate security into DevOps practices, focusing on automating security checks and processes within a CI/CD pipeline.
By the end of this training, participants will be able to:
- Grasp the fundamentals of integrating security within the DevOps process.
- Automate security checks using Jenkins and integrate tools like SonarQube for code analysis and vulnerability scanning.
- Deploy secure applications with Kubernetes.
- Ensure secure communication between microservices using RabbitMQ, PostgreSQL, and MongoDB.
- Set up continuous monitoring and auditing to ensure compliance and security across deployments.
Format of the Course
- Interactive lecture and discussion.
- Lots of exercises and practice.
- Hands-on implementation in a live-lab environment.
Course Customization Options
- To request a customized training for this course, please contact us to arrange.
Introduction to DevSecOps
- The importance of integrating security into the DevOps process
- Key principles and practices of DevSecOps
Continuous Integration (CI) Security
- Securing code repositories (GitLab integration with Jenkins)
- Automated code quality and security analysis using SonarQube
- Implementing static code analysis as part of Jenkins CI pipeline
Container Security with Docker
- Creating secure Docker images
- Managing Docker image repositories with Harbor
- Best practices for vulnerability scanning and image version control
Setting up Secure CI/CD Pipelines
- Configure Jenkins for security integration
- Run a SonarQube analysis
- Generate and secure Docker images
Securing the Deployment Process with Kubernetes
- Security practices for Kubernetes orchestration
- Role of Kubernetes Orchestrator in secure progressive deployment
- Implementing RBAC (Role-Based Access Control) and securing service communication
Integrating RabbitMQ, PostgreSQL, and MongoDB
- Secure communication between services
- Data security practices for PostgreSQL and MongoDB
- Hardening RabbitMQ for secure messaging
Identity and Access Management with Keycloak
- Configuring Keycloak for user authentication and authorization
- Managing identity for Kubernetes clusters
Implementing Security in Kubernetes
- Deploy applications securely on Kubernetes
- Integrate Keycloak with Docker and Kubernetes for identity management
Monitoring and Auditing in DevSecOps
- Continuous monitoring tools and techniques
- Auditing deployments and maintaining compliance
- Practical guide to automating rollback on security failures
Summary and Next Steps
United Arab Emirates - DevSecOps: Integrating Security into DevOps Pipelines
Qatar - DevSecOps: Integrating Security into DevOps Pipelines
Egypt - DevSecOps: Integrating Security into DevOps Pipelines
Saudi Arabia - DevSecOps: Integrating Security into DevOps Pipelines
South Africa - DevSecOps: Integrating Security into DevOps Pipelines
Brasil - DevSecOps: Integrating Security into DevOps Pipelines
Canada - DevSecOps: Integrating Security into DevOps Pipelines
中国 - DevSecOps: Integrating Security into DevOps Pipelines
香港 - DevSecOps: Integrating Security into DevOps Pipelines
澳門 - DevSecOps: Integrating Security into DevOps Pipelines
台灣 - DevSecOps: Integrating Security into DevOps Pipelines
USA - DevSecOps: Integrating Security into DevOps Pipelines
Österreich - DevSecOps: Integrating Security into DevOps Pipelines
Schweiz - DevSecOps: Integrating Security into DevOps Pipelines
Deutschland - DevSecOps: Integrating Security into DevOps Pipelines
Czech Republic - DevSecOps: Integrating Security into DevOps Pipelines
Denmark - DevSecOps: Integrating Security into DevOps Pipelines
Estonia - DevSecOps: Integrating Security into DevOps Pipelines
Finland - DevSecOps: Integrating Security into DevOps Pipelines
Greece - DevSecOps: Integrating Security into DevOps Pipelines
Magyarország - DevSecOps: Integrating Security into DevOps Pipelines
Ireland - DevSecOps: Integrating Security into DevOps Pipelines
Luxembourg - DevSecOps: Integrating Security into DevOps Pipelines
Latvia - DevSecOps: Integrating Security into DevOps Pipelines
España - DevSecOps: Integrating Security into DevOps Pipelines
Italia - DevSecOps: Integrating Security into DevOps Pipelines
Lithuania - DevSecOps: Integrating Security into DevOps Pipelines
Nederland - DevSecOps: Integrating Security into DevOps Pipelines
Norway - DevSecOps: Integrating Security into DevOps Pipelines
Portugal - DevSecOps: Integrating Security into DevOps Pipelines
România - DevSecOps: Integrating Security into DevOps Pipelines
Sverige - DevSecOps: Integrating Security into DevOps Pipelines
Türkiye - DevSecOps: Integrating Security into DevOps Pipelines
Malta - DevSecOps: Integrating Security into DevOps Pipelines
Belgique - DevSecOps: Integrating Security into DevOps Pipelines
France - DevSecOps: Integrating Security into DevOps Pipelines
日本 - DevSecOps: Integrating Security into DevOps Pipelines
Australia - DevSecOps: Integrating Security into DevOps Pipelines
Malaysia - DevSecOps: Integrating Security into DevOps Pipelines
New Zealand - DevSecOps: Integrating Security into DevOps Pipelines
Philippines - DevSecOps: Integrating Security into DevOps Pipelines
Singapore - DevSecOps: Integrating Security into DevOps Pipelines
Thailand - DevSecOps: Integrating Security into DevOps Pipelines
Vietnam - DevSecOps: Integrating Security into DevOps Pipelines
India - DevSecOps: Integrating Security into DevOps Pipelines
Argentina - DevSecOps: Integrating Security into DevOps Pipelines
Chile - DevSecOps: Integrating Security into DevOps Pipelines
Costa Rica - DevSecOps: Integrating Security into DevOps Pipelines
Ecuador - DevSecOps: Integrating Security into DevOps Pipelines
Guatemala - DevSecOps: Integrating Security into DevOps Pipelines
Colombia - DevSecOps: Integrating Security into DevOps Pipelines
México - DevSecOps: Integrating Security into DevOps Pipelines
Panama - DevSecOps: Integrating Security into DevOps Pipelines
Peru - DevSecOps: Integrating Security into DevOps Pipelines
Uruguay - DevSecOps: Integrating Security into DevOps Pipelines
Venezuela - DevSecOps: Integrating Security into DevOps Pipelines
Polska - DevSecOps: Integrating Security into DevOps Pipelines
United Kingdom - DevSecOps: Integrating Security into DevOps Pipelines
South Korea - DevSecOps: Integrating Security into DevOps Pipelines
Pakistan - DevSecOps: Integrating Security into DevOps Pipelines
Sri Lanka - DevSecOps: Integrating Security into DevOps Pipelines
Bulgaria - DevSecOps: Integrating Security into DevOps Pipelines
Bolivia - DevSecOps: Integrating Security into DevOps Pipelines
Indonesia - DevSecOps: Integrating Security into DevOps Pipelines
Kazakhstan - DevSecOps: Integrating Security into DevOps Pipelines
Moldova - DevSecOps: Integrating Security into DevOps Pipelines
Morocco - DevSecOps: Integrating Security into DevOps Pipelines
Tunisia - DevSecOps: Integrating Security into DevOps Pipelines
Kuwait - DevSecOps: Integrating Security into DevOps Pipelines
Oman - DevSecOps: Integrating Security into DevOps Pipelines
Slovakia - DevSecOps: Integrating Security into DevOps Pipelines
Kenya - DevSecOps: Integrating Security into DevOps Pipelines
Nigeria - DevSecOps: Integrating Security into DevOps Pipelines
Botswana - DevSecOps: Integrating Security into DevOps Pipelines
Slovenia - DevSecOps: Integrating Security into DevOps Pipelines
Croatia - DevSecOps: Integrating Security into DevOps Pipelines
Serbia - DevSecOps: Integrating Security into DevOps Pipelines
Bhutan - DevSecOps: Integrating Security into DevOps Pipelines
Nepal - DevSecOps: Integrating Security into DevOps Pipelines
Uzbekistan - DevSecOps: Integrating Security into DevOps Pipelines