Course Outline
Introduction
- How DevOps introduces greater security risks for organizations
- The trade-offs of agility, speed, and decentralized control
Limitations of Traditional Security Tools
- Static security policies
- Firewall rules
- Insufficient APIs for integration
- Lack of visualization tools
Implementing a DevOps-Ready Security Program
Aligning Security with Business Objectives
Eliminating Security Bottlenecks
Enhancing Detailed Visibility
Standardizing Security Configurations
Integrating Sensors into Applications
- Interactive Application Security Testing (IAST)
- Runtime Application Self-Protection (RASP)
Providing Security Data to DevOps Tools via RESTful APIs
On-Demand Scaling and Micro-Perimeterization of Security Controls
Per-Resource Granular Security Policies
Automating Attacks against Pre-Production Code
Continuously Testing the Production Environment
Securing Web Applications from an Agile/DevOps Perspective
Securing Containers and Cloud Environments
Adopting Next-Generation Automated Security Tools
The Future of DevOps and Its Strategic Role in Security
Summary and Conclusion
Requirements
- Experience with DevOps practices.
- Foundational knowledge or interest in security.
Target Audience
- DevOps engineers
- Security engineers
Testimonials (1)
real life examples
