Training level: Intermediate
Modern enterprises are implementing the technical and cultural changes required to embrace DevOps methodology by introducing practices such as Continuous Integration (CI), Continuous Delivery (CD), Continuous Monitoring (CM), and Infrastructure as Code(IaC).DevSecOps extends DevOps by introducing security in each of these practices giving a certain level of security assurance in the final product. In this training, we will demonstrate using our state-of-the-art DevSecOps Lab how to inject security in CI, CD, CM, and IaC.
Every delegate will be provided a personalized cloud setup of our DevSecOps lab for hands-on implementation of various security tools in the CI/CD/CM pipeline. Attendees will receive the DevSecOps Lab built using Vagrant and Ansible comprising the same tools and scripts as a takeaway.
A Short preview of our course is available for viewing here https://www.youtube.com/watch?v=yPqCoD-1bDA
A basic understanding of web security and DevOps will be helpful. However, this is not mandatory.
DevOps engineers, security and solutions architects, and system administrators will also strongly benefit from this course as it’ll give them a holistic approach toward application security.
Access to cloud DevSecOps-Lab for 24 hours post end of the training for further hands-on practice for each delegate. The attendees will also receive a DevSecOps-Lab VM (designed by the NotSoSecure team) containing all the code, scripts, and tools that are used for building the entire DevSecOps pipeline.
The training will be delivered using open-source tools. Please do not expect us to use commercial/licensed tools.
Jovin is an information security professional working as a Sr. Security Consultant at NotSoSecure. He has over 9 years of experience and specializes in Network and Application Security Assessments. Jovin is passionate about AppSec and Devsecops and often delivers talks and training on the same. He has spoken at conferences like Bsides Dublin, Cocon, nullcon, and GNUnify in the past. He loves exploring new technologies and enjoys scripting & coding.