MotivaLogic

MotivaLogic logo
Account

DevSecOps Foundation Certification TRAINING

DevSecOps Foundation Certification

Learn to implement DevSecOps, Drive continuous improvement and become a valuable asset.

  • Accredited courses
  • Use DevSecOps to drive secure, scalable processes by learning tools, such as Terraform, ansible and many more
  • Break the silos between Development, Security and Operations
  • Experiential learning with case studies, engaging activities and more!
  • Build secure automation pipelines that enhance both speed and compliance
Contact Learning Advisor
View Schedules
Pay
devops found
Certification

DSOF . 16 Hours . €1200  Beginner

DevSecOps Foundation

HIGH-IMPACT SKILIS FOR THE FUTURE OF WORK

Choose From In-Demand Certification

Our immersive certification in booming fields like Data Science. Al. and Cloud Computing
provide vou with the practical Knowledge and experience vou need to succeed in the ever
evolving job market. Don’t just learn, get future-ready with MotivaLogic Academy.

DevOps Foundation
DevOps Engineering
DevOps Leader
Site Reliability Engineering Foundation
DevSecOps Practitioner
Site Reliability Engineering Practitioner
AIOps Foundation

DevSecOps Foundation (DSOF)℠ is a certification that is accredited by DevOps Institute. A DevSecOps engineer is an IT Security professional who is skilled at security as code with the intent of making security and compliance consumable as a service. A DevSecOps engineer uses data and security science as their primary means of protecting the organization and customer. The purpose of this certification and its associated course is to impart, test and validate knowledge of DevSecOps vocabulary, principles, practices, automation and value.

No prerequisites / open book exams / web exams / 25 min more for non english native.

The target audience for the DevSecOps Foundation course includes Management, Operations, Developers, QA and Testing professionals such as:

  • Individuals involved in IT development, IT operations or IT service management
  • Individuals who require an understanding of DevOps principles
  • IT professionals working within, or about to enter, an Agile Service Design Environment

The following IT roles: Automation Architects, Application Developers, Business Analysts, Business Managers, Business    Stakeholders, Change Agents, Consultants, DevOps Consultants, DevOps Engineers, Infrastructure Architects, Integration Specialists, IT Directors, IT Managers, IT Operations, IT Team Leaders, Lean Coaches, Network Administrators, Operations Managers, Project Managers, Release Engineers, Software Developers

  • Software Testers/QA, System Administrators, Systems Engineers, System Integrators, Tool Providers
  • Although there are no formal prerequisites for the exam, DevOps Institute highly recommends the following to prepare candidates for the exam leading to the DevSecOps Foundation certification:
  • It is recommended that candidates complete at least 16 contact hours (instruction and labs) as part of a formal, approved training course delivered by an accredited Education Partner of DevOps Institute.

As companies are pushing code faster and more often than ever, the rate of vulnerabilities in our systems is accelerating. As we are being asked to do more with less, DevOps has shown immense value to business and security as an integral component that needs to be integrated into the strategy.

Topics covered in the course include how DevSecOps provides the business value of DevOps and the ability DevOps has to enable the business and support an organizational transformation with the ultimate goal of increasing productivity, reducing risk, and optimizing cost in the organization.

This course explains how DevOps security practices differ from other security approaches and provides the education needed to understand and apply data and security sciences. Participants learn the purpose, benefits, concepts, and vocabulary of DevSecOps; particularly how DevSecOps roles fit with a DevOps culture and organization. At the end of this course, participants will understand using “security as code” with the intent of making security and compliance consumable as a service.

The course is designed to teach practical steps on how to integrate security programs into DevOps practices and highlights how professionals can use data and security science as the primary means of protecting the organization and customer.

Using real-life scenarios and case studies, participants will have tangible takeaways to leverage when back at the office.

This course positions learners to successfully complete the DevSecOps Foundation exam, which is offered on the last day of class for classroom learners. Virtual learners will receive a voucher for a web based exam which they can schedule at their convenience.

No prerequisites / open book exams / web exams / 25 min more for non english native.


COURSE OBJECTIVES

The learning objectives include a practical understanding of:

  •     The purpose, benefits, concepts, and vocabulary of DevSecOps
  •     How DevOps security practices differ from other security approaches
  •     Business-driven security strategies
  •     Understanding and applying data and security sciences
  •     The use and benefits of Red and Blue Teams
  •     Integrating security into Continuous Delivery workflows
  •     How DevSecOps roles fit with a DevOps culture and organization

Course Introduction

  •     Course Goals
  •     Course Agenda
  •     Exercise: Diagramming Your CI/CD Pipeline

    Why DevSecOps?

  •     Key Terms and Concepts
  •     Why DevSecOps is important
  •     3 Ways to Think About DevOps+Security
  •     Key Principles of DevSecOps

    Culture and Management

  •     Key Terms and Concepts
  •     Incentive Model
  •     Resilience
  •     Organizational Culture
  •     Generativity
  •     Erickson, Westrum, and LaLoux
  •     Exercise: Influencing Culture

    Strategic Considerations

  •     Key Terms and Concepts
  •     How Much Security is Enough?
  •     Threat Modeling
  •     Context is Everything
  •     Risk Management in a High-velocity World
  •     Exercise: Measuring For Success

    General Security Considerations

  •     Avoiding the Checkbox Trap
  •     Basic Security Hygiene
  •     Architectural Considerations
  •     Federated Identity
  •     Log Management

    IAM: Identity & Access Management

  •     Key Terms and Concepts
  •     IAM Basic Concepts
  •     Why IAM is Important
  •     Implementation Guidance
  •     Automation Opportunities
  •     How to Hurt Yourself with IAM
  •     Exercise: Overcoming IAM Challenges

    Application Security

  •     Application Security Testing (AST)
  •     Testing Techniques
  •     Prioritizing Testing Techniques
  •     Issue Management Integration
  •     Threat Modeling
  •     Leveraging Automation

    Operational Security

  •     Key Terms and Concepts
  •     Basic Security Hygiene Practices
  •     Role of Operations Management
  •     The Ops Environment
  •     Exercise: Adding Security to Your CI/CD Pipeline

    Governance, Risk, Compliance (GRC) and Audit

  •     Key Terms and Concepts
  •     What is GRC?
  •     Why Care About GRC?
  •     Rethinking Policies
  •     Policy as Code
  •     Shifting Audit Left
  •     3 Myths of Segregation of Duties vs. DevOps
  •     Exercise: Making Policies, Audit and Compliance Work with DevOps

    Logging, Monitoring, and Response

  •     Key Terms and Concepts
  •     Setting Up Log Management
  •     Incident Response and Forensics
  •     Threat Intelligence and Information Sharing

    Course Review

  •     Where We Started
  •     What We Covered
  •     Key Reminders of What’s Important
  •     Exercise: Creating a Personal Action Plan

    Exam Preparations

  •     Exam Requirements, Question Weighting, and Terminology List
  •     Sample Exam Review

Please note that the €1,200.00 per seat is including Exam Voucher.

Successfully passing (65%) the 60 minute exam, consisting of 40 multiple-choice questions, leads to the DevSecOps Foundation Certificate. The certification is governed, administered and maintained by the DevOps Institute.

No prerequisites / open book exams / web exams / 25 min more for non english native.

Although there are no formal prerequisites for the exam, DevOps Institute highly recommends the following to prepare candidates for the exam leading to DevSecOps Foundation certification:

It is recommended that candidates complete at least 16 contact hours (instruction and labs) as part of a formal, approved training course delivered by an accredited Education Partner of DevOps Institute.

The DevSecOps Foundation certification uses the Bloom Taxonomy of Educational Objectives in the construction of both the content and the examination.

The DevSecOps Foundation exam contains Bloom 1 questions that test learners’ knowledge of DevOps concepts and vocabulary terms
The exam also contains Bloom 2 questions that test learner’s comprehension of these concepts in context

  • Attend a public course, if there is one available. Please check our schedule, or register your interest in joining a course in your area.
  • Private onsite Team training also available, please contact us to discuss. We can customize this course to suit your business requirements.