Future Skills Fiesta:
 Get up to 30% OFF on Career Booster Combos
9 D 6 H 31 M 55 S

Practical DevSecOps Training in Hyderabad
Read Reviews

InfosecTrain’s Practical DevSecOps course in Chennai provides a comprehensive, hands-on learning experience in implementing DevSecOps practices within Docker and Kubernetes environments, specifically emphasizing Spring Boot applications. This course blends theoretical knowledge with immersive labs and a compelling Spring Boot application demonstration to ensure a profound understanding of DevSecOps principles and best practices.

Watch Intro Video

Course Highlights

  • 40-Hour LIVE Instructor-Led Training
  • Scenario-based Practical Approach
  • 6+ Intermediate Learning Projects Covered
  • Immersive Learning
  • Hands-on Projects for Each Tool
  • Learn from Industry Experts
  • Career Guidance and Mentorship
  • 40+ Open-source Tools
  • Access to Recorded Sessions

Accredited By

TRAINING CALENDAR

Choose your Preferred Learning Mode

ON DEMAND TRAINING

Learn on Your Own Time
1-to-1 learning
Customized Solutions

Contact US

ONLINE TRAINING

Flexibility, Convenience & Time Saving
More Effective
Learning Cost Savings

Classes starting from

5th Sep: Weekend

15th Sep: Weekday

ENROLL NOW Preferred

CORPORATE TRAINING

Anytime, Anywhere – Across The Globe
Hire A Trainer
At Your Own Pace
Customized Corporate Training

Contact US For Business

you were looking for your convenient time & date

REQUEST A BATCH

Course Description

DevSecOps: Practical Approach training course from InfosecTrain has been meticulously crafted to equip participants with an extensive comprehension and hands-on expertise in the seamless implementation of DevSecOps practices within the context of a Docker and Kubernetes environment. This DevSecOps practical Course highlights the optimal utilization of Docker and Kubernetes to establish streamlined DevOps workflows, skillfully integrating security measures at every stage of the software development lifecycle. The DevSecOps course benefits learners with the latest curriculum which thoughtfully merges theoretical concepts with immersive, hands-on labs and ensures participants garner a profound understanding of the fundamental principles and best practices of DevSecOps.

 

Tools

Target Audience

  • DevOps Engineers
  • Security Engineers
  • Software Engineers
  • System Administrators
  • Architects and Product Managers
  • Developers
  • Testers
  • Cloud Architects
  • Cloud Infrastructure Specialists

Pre-Requisite

  • Basic knowledge of Linux command-line usage, containerization concepts, and general DevOps practices
  • Understanding of Spring Boot application development and Jenkins is required.
  • Technical background or B.E/B.Tech degree

GET A FREE DEMO CLASS

For
Captcha*
6 + 80 =
loader-infosectrain

Course Objectives

  • Understand DevSecOps principles, benefits, and challenges
  • Familiarize with Docker and Kubernetes for container management
  • Implement CI/CD pipelines using Kubernetes
  • Perform vulnerability scanning and testing in DevSecOps
  • Utilize tools for identifying code and resource vulnerabilities
  • Secure Kubernetes networking and communication with TLS
  • Authenticate and authorize Kubernetes API Server, etc
  • Monitor Kubernetes for security
  • Manage secrets and sensitive data in the DevSecOps pipeline
  • Learn about popular secrets management tools like HashiCorp Vault
  • Integrate Vault with Kubernetes for secure secret injection
  • Explore bonus topics covering security orchestration tools

Course Content

Introduction To The Basics

  • What is DevOps?
  • What is Continuous Integration and Continuous Deployment?
  • DevOps vs. DevSecOps vs. Rugged DevOps
  • Introduction to DevSecOps and Its Benefits

 

Introduction To The Tools

  • Git/Github
  • GitHub Actions/Jenkins
  • OWASP ZAP
  • Ansible
  • Docker
  • K8S
  • Inspec

 

Software Component Analysis (SCA) in CI/CD Pipeline

  • SCA Introduction
  • Tools Used for SCA
  • Demo/Hands-On (OWASP Dependency Checker/RetireJS/Safety)
  • Intermediate Project- 1

 

SAST (Static Analysis) in CI/CD Pipeline

  • SAST Introduction
  • Tools Used for SAST
  • Demo/Hands-On(SpotBugs,SonarQube,SonarCloud)
  • Intermediate Project- 2

 

DAST (Dynamic Analysis) in CI/CD Pipeline

  • DAST Introduction
  • Tools Used for DAST
  • Demo/Hands-On(OWASP ZAP)
  • Intermediate Project- 3

 

Infrastructure As Code And Its Security

  • IaaC Introduction
  • Tools Used for IaaC
  • Demo/Hands-On(Docker,Ansible,Terraform)
  • Intermediate Project- 4

 

Compliance/Audit/Policy As Code

  • Policy as a Code Introduction
  • Tools Used for Compliance/Audit as Code
  • Demo/Hands-On(Inspec/OpenScap)
  • Intermediate Project- 5

 

Vulnerability Management

  • Vulnerability Management Introduction
  • Tools Used for Vulnerability Management
  • Demo/Hands-On(Defect Dojo)
  • Intermediate Project- 6

 

Final Capstone Project:

 

Integrating All the Tools in a Single CI/CD Pipeline

Need customized curriculum Talk to Advisor

Here What people are saying about InfosecTrain

Why InfosecTrain

Guaranteed* to run Courses

4 hrs/day in Weekday/Weekend

Customized Training

Technical Support Post Training

Access to the recorded session

Accredited Instructors

TOP