Introduction to DevSecOps is designed for those that want to understand, apply and improve their DevSecOps skills. It addresses both the business of DevOps and the ability DevOps has to enable the business and support an organizational transformation as well as the need for DevSecOps pipelines. In this course students learn the major components in a DevOps (or DevSecOps) pipeline, security’s role in DevOps, as well as DevSecOps processes, tools, and techniques
Learning Objectives
Students learn how DevSecOps security practices differ from other security approaches and how security is woven into a DevOps pipeline. Integration of security programs into DevOps practices are also discussed. Other topics include CSA, SAST, DAST, and Security as Code
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Competency Areas
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.