AREA: DevSecOps
DURATION: 2 days
AUDIENCE: Developers interested in incorporating security into their development process.
Operators interested in automating security best practices to the production pipelines.
NUMBER OF PARTICIPANTS:
| Training |
Suggested Participants |
Maximum Participants |
| Physical/Virtual |
6 |
10 |
REQUIREMENTS: Solid Git exeperience (i.e. Mastering Versioning).
Solid Container experience (i.e. Kubernetes From Scratch).
Ability to interact with the command-line or other graphical tools.
OUTCOMES: Describe the fundamentals of DevSecOps, security best practices and automation.
Implement security principles into DevOps
pipelines and processes.
Apply risk assessment techniques and strategies to prioritize security initiatives.
AGENDA:
- Day 1
Introductions
DevSecOps fundamentals
DevSecOps tools: GitLab
GitLab SAST
SonarQube SAST
- Day 2
Nexus Container Image management
Building a full DevSecOps pipeline
Kubernetes, a DevSecOps ready container orchestator
- Labs
Pipeline Requirements
Pipeline GitLab
Pipeline GitLab SAST
Pipeline SonarQube
Pipeline Nexus
Pipeline Full Implementation
Kubernetes Vulnerability Monitoring
Kubernetes Admission Controller
- Possibility of creating a fully customizable learning path chosen by the customer and expertly advised by Kiratech. Contact us for more information.
