DevSecOps Training

Date: 

Monday, March 25, 2019 - 09:00 to 16:00

Venue: 

Leeds Marriott Hotel, Boar Lane, Leeds, LS1 6ET

Event type: 

Modern enterprises have been constantly implementing the technical and cultural changes required to adapt and embrace the DevOps methodology. The practice of DevSecOps extends DevOps by introducing security early into the SDLC process, thereby minimizing software vulnerabilities and enhancing its overall security posture. In this workshop, we will show how this can be achieved through a series of live demonstrations and practical examples.

The following topics, which encompass an entire Secure DevOps methodology, will be covered:

  • Introduction and overview of DevOps
  • What and Why of DevSecOps?
  • Integrating Security in CI/CD
  • Vulnerability Management using Archerysec
  • Secret Management using Vault, Jenkins and Docker Secrets
  • Security in Developer Workstations: Pre-Commit Hooks using Talisman
  • Software Composition Analysis using Dependency-Checker
  • SAST - Static Application Security Testing using FindSecBugs
  • DAST - Dynamic Application Security Testing using ZAP and OpenVAS
  • Compliance as Code using Inspec
  • Security in Infrastructure as a Code using Clair
  • Production Real-Time Alerting and Monitoring using Modsecurity WAF
  • DevSecOps in AWS
  • Challenges in DevSecOps
  • DevSecOps Enablers

Who should take this class?

DevSecOps Workshop, which will give the target audience a holistic approach in assessing and securing the web applications in an automated fashion within the existing CI/CD pipeline, can be attended by DevOps engineers, security and solutions architects, system administrators and anybody who is willing to inject security aspects in their DevOps process.

Student Requirements

Our workshop will be delivered as an interactive session, so the attendees can carry a laptop with them (optional). We also encourage the attendees to download and try the tools and techniques discussed during the workshop as the instructor is demonstrating it.

The attendees will receive a free "DevSecOps tool-chest" (designed by the NotSoSecure team) which can be directly implemented in most of the CI/CD pipelines.

Register

Questions? Get in contact with us

Make a sales enquiry

Please fill out the form below with your sales enquiry and we'll get back to you as soon as possible. If you are looking for technical support please email solutionsupport@uk.clara.net

Fields marked with a * are required

We aim to respond to all email enquiries within 5 working days, but we usually respond within 24 hours.

Speak to a member of the team

Please give us a call on 0207 685 8000 between 09:00 - 17:30 Monday to Friday to speak with one of the sales team.

For small business enquiries, please call Claranet SOHO on 0800 640 8009

Looking for technical support? Our UK support team are available 24x7x365 to help on 0330 390 0500