As security challenges continue to evolve, it emphasizes the importance of integrating security into every stage of the software development lifecycle. Participants will delve into the technical depths of CI/CD tools such as Jenkins and GitLab, essential for automating the development processes. Furthermore, the course also covers cloud infrastructure management across major platforms including Amazon Web Services, Microsoft Azure, and Google Cloud Platform.

Participants will learn how to set up virtual machines, manage access control, configure storage solutions, and more. This knowledge lays a solid foundation for understanding the myriad components that coalesce in a robust DevOps environment, preparing participants to seamlessly integrate these elements in real-world applications.

The learning journey continues as participants explore native services provided by the three major cloud providers, tailored specifically for DevOps operations. This includes automating the deployment of web applications and crafting Infrastructure as Code templates using tools like Terraform. The course also covers essential practices in configuration and change management across both on-premises and cloud infrastructures with tools such as Ansible, Chef, and Puppet. These skills are critical for maintaining consistency and reliability in dynamic IT environments.

Furthermore, the curriculum introduces containerization and orchestration technologies, including Docker and Kubernetes, which are pivotal in deploying web applications efficiently and at scale.

Upon completing this course, participants will emerge with advanced capabilities in:

• Understanding DevSecOps advantages for efficient and secure software development.
• Integrating CI/CD pipelines for optimized release processes.
• Developing secure web applications against common threats like CSRF and SQL injection.
• Configuring Jenkins, GitLab, and AWS for continuous integration and deployment.
• Utilizing Ansible, Chef, and Puppet for infrastructure management and secure deployments.
• Developing and managing Docker containers for application deployment.
• Developing and managing Docker containers for application deployment.

MCSI is one of the most respected and trusted names in cyber security education and training. Our certifications teach critical skills, knowledge and abilities needed to advance a career in cyber security. Our courses are comprehensive and up-to-date, and our instructors are experienced professionals who are dedicated to helping students learn. MCSI provides the real-world skills and knowledge you need to protect any organization from cyber threats.

• Lab Setup and Virtualization
• Introduction to DevSecOps and DevOps Tools

  DevSecOps is an approach that integrates security practices into the DevOps (Development and Operations) process, aiming to prioritize security throughout the software development lifecycle. DevOps tools are technologies and platforms that automate and streamline software development, testing, and deployment processes, and their relevance lies in enabling efficient collaboration, continuous integration, and delivery while integrating security measures to build secure and resilient software products.

  This approach ensures that security is not an afterthought but a fundamental aspect integrated from the start, enhancing overall software quality and reducing vulnerabilities.

  Understand the Differences Between DevSecOps and AppSecOps

  Differentiating between DevSecOps and AppSecOps is important for DevSecOps specialists to grasp the distinct focuses of integrating security into development processes (DevSecOps) versus focusing solely on application security (AppSecOps), enabling informed security strategies tailored to software development lifecycles.

  Continuous Integration and Continuous Deployment (CI/CD)

  Understanding CI/CD processes is essential for DevSecOps specialists to automate software development, testing, and deployment cycles, ensuring rapid and reliable delivery of secure software updates while integrating security checks and validations into automated pipelines.

  Infrastructure as Code

  Embracing Infrastructure as Code (IaC) is critical for DevSecOps specialists to manage and provision infrastructure using code, enabling consistent and scalable deployments while incorporating security controls and best practices directly into infrastructure definitions.

  Utilizing Jenkins

  Leveraging Jenkins for automation and orchestration is fundamental for DevSecOps specialists to implement CI/CD pipelines, integrate security testing tools, and automate security checks throughout the software development lifecycle, enhancing efficiency and ensuring secure software delivery.

  Implementing a CI/CD within GitLab for Projects

  Implementing CI/CD pipelines within GitLab is valuable for DevSecOps specialists to automate software builds, testing, and deployments directly within version-controlled repositories, fostering collaboration, version control, and security integration within a unified platform.

• Cloud Platforms and Infrastructure as Code (IaC)

  Cloud Platforms provide scalable and flexible infrastructure resources on-demand, enabling DevSecOps specialists to leverage cloud services for rapid deployment, scalability, and cost-effectiveness of software applications. Infrastructure as Code (IaC) is crucial for DevSecOps specialists as it allows them to automate and manage infrastructure configurations using code, ensuring consistency, repeatability, and version control of infrastructure deployments while integrating security controls directly into infrastructure definitions for enhanced security and compliance.

  This approach enables efficient and secure delivery of applications in cloud environments, aligning with DevSecOps principles of integrating security into the software development lifecycle.

  Deploying EC2 Instances

  Deploying EC2 instances on AWS allows DevSecOps specialists to provision scalable compute resources in the cloud, enabling flexible and efficient deployment of applications while implementing security controls and monitoring for secure operations.

  Configuring VPC Flow Logging

  Setting up VPC flow logging in AWS enables DevSecOps specialists to monitor and analyze network traffic within Virtual Private Clouds (VPCs), facilitating threat detection, compliance auditing, and incident response for enhanced security posture.

  Setting up AWS S3 Buckets

  Setting up and managing AWS S3 buckets allows DevSecOps specialists to securely store and manage data in scalable and durable object storage, implementing access controls, encryption, and versioning to protect sensitive information and ensure data integrity.

  Setting up & Managing Azure Cloud Infrastructure

  Managing Azure cloud infrastructure involves provisioning and configuring resources such as virtual machines, networks, and storage in Microsoft Azure, enabling DevSecOps specialists to deploy and secure applications while adhering to Azure's security best practices and compliance standards.

  Setting up & Managing Virtual Machines using Google Cloud Platform

  Managing virtual machines on Google Cloud Platform (GCP) allows DevSecOps specialists to deploy and maintain scalable compute instances, implementing security controls, monitoring, and access management to ensure secure and reliable operations of applications on GCP.

  Implementing Load Balancers, Reverse Proxies, Docker Images on AWS

  Deploying load balancers, reverse proxies, and Docker containers on AWS enables DevSecOps specialists to optimize application performance, scalability, and reliability while ensuring secure traffic management, container orchestration, and container security within AWS environments.

  Creating Microsoft Azure Pipelines

  Creating Azure Pipelines allows DevSecOps specialists to automate software delivery processes, including build, test, and deployment workflows on Microsoft Azure, integrating security testing and compliance checks to achieve continuous integration and continuous delivery (CI/CD) with Azure DevOps services.

  Utilizing Google Cloud Platform Deployment Manager

  Leveraging Google Cloud Platform Deployment Manager enables DevSecOps specialists to define, deploy, and manage cloud resources using declarative configurations, ensuring consistent and repeatable infrastructure deployments while applying security controls and compliance policies within GCP environments.

  Creating CI/CD Pipeline within Google Cloud Platform

  Implementing CI/CD pipelines within Google Cloud Platform (GCP) allows DevSecOps specialists to automate software delivery workflows, integrating security testing, and vulnerability scanning into continuous deployment processes to achieve secure and efficient application releases on GCP.

  Utilizing Terraform to Secure AWS Infrastructure

  Using Terraform for AWS infrastructure as code (IaC) allows DevSecOps specialists to define and manage security configurations, access controls, and compliance policies as code, ensuring consistent and secure provisioning of AWS resources while implementing security best practices and automation.

  Utilizing Terraform to Secure Azure Infrastructure

  Leveraging Terraform for Azure infrastructure management enables DevSecOps specialists to automate security controls, define security policies, and enforce compliance standards across Azure resources, ensuring secure and auditable deployments while promoting infrastructure-as-code (IaC) practices.

  Utilizing Terraform to Secure Google Cloud Platform Instances

  Using Terraform to manage and secure Google Cloud Platform (GCP) instances allows DevSecOps specialists to automate security configurations, define access controls, and enforce security policies across GCP resources, promoting consistent and secure infrastructure deployments while integrating security best practices into the development lifecycle.

  Configuring and Installing Ansible

  Configuring and installing Ansible enables DevSecOps specialists to automate configuration management, orchestration, and security hardening tasks across cloud environments, facilitating consistent and secure provisioning of infrastructure and applications with Ansible playbooks and modules.

  Utilizing Ansible to Harden AWS

  Leveraging Ansible for AWS hardening involves implementing security best practices and configurations across AWS resources using Ansible playbooks, ensuring compliance, and reducing security risks within AWS environments managed by DevSecOps specialists.

  Utilizing Chef to Secure AWS, Azure, and GCP Configurations

  Implementing Chef for configuration management enables DevSecOps specialists to automate security configurations and policy enforcement across AWS, Azure, and Google Cloud Platform (GCP) environments, ensuring consistent and compliant infrastructure deployments while enhancing security posture and operational efficiency.

  Utilizing Puppet to Harden AWS Infrastructure

  Leveraging Puppet for AWS infrastructure hardening involves automating security configurations and compliance checks across AWS resources using Puppet manifests, enabling DevSecOps specialists to maintain secure and auditable infrastructure deployments while enforcing security policies and best practices.

• Containerization and Orchestration

  Containerization and orchestration are crucial for DevSecOps specialists because they enable consistent, portable, and scalable deployment of applications while ensuring security controls are integrated throughout the container lifecycle.

  Containerization allows for isolated and lightweight environments, facilitating rapid development and deployment cycles, while orchestration platforms like Kubernetes automate management tasks, improving efficiency and enabling security-focused practices such as automated vulnerability scanning, secrets management, and network policies to be applied consistently across distributed environments.

  Docker

  Docker is a containerization platform that allows DevSecOps specialists to package and deploy applications in lightweight, isolated containers, facilitating consistent and portable software deployments while enhancing security through containerization.

  Securely Configuring and Deploying Docker Images

  Securely configuring and deploying Docker images involves implementing best practices for image hardening, vulnerability scanning, and container runtime security, ensuring that Docker containers are built and deployed with security in mind to mitigate risks and vulnerabilities.

  Kubernetes

  Kubernetes is a container orchestration platform that automates container deployment, scaling, and management, allowing DevSecOps specialists to efficiently manage and secure containerized applications at scale while implementing security controls and policies within Kubernetes clusters.

  Configuring and Deploying Kubernetes

  Configuring and deploying Kubernetes involves setting up and managing Kubernetes clusters, configuring networking, storage, and security settings, enabling DevSecOps specialists to deploy and secure containerized applications efficiently across distributed environments.

  Vulnerability Scanning Docker Images & Kubernetes

  Performing vulnerability scans on Docker images and Kubernetes clusters allows DevSecOps specialists to identify and remediate security vulnerabilities and misconfigurations, ensuring that containerized applications are deployed with minimal security risks and compliance with security standards.

  Writing Falco Rules

  Writing Falco rules involves defining custom security policies and detection rules for runtime container security monitoring, enabling DevSecOps specialists to detect and respond to suspicious activities and security incidents within Kubernetes environments.

  Implementing Role-Based Access Control within Kubernetes

  Implementing Role-Based Access Control (RBAC) in Kubernetes allows DevSecOps specialists to enforce fine-grained access controls and permissions, ensuring that only authorized users and processes have access to Kubernetes resources based on predefined roles and policies.

  Monitoring Kubernetes

  Monitoring Kubernetes involves collecting and analyzing metrics, logs, and events from Kubernetes clusters, enabling DevSecOps specialists to detect anomalies, performance issues, and security incidents in real-time for proactive monitoring and response.

  Create CI/CD Pipelines to Deploy Kubernetes Applications

  Creating CI/CD pipelines for Kubernetes applications allows DevSecOps specialists to automate build, test, and deployment workflows, integrating security testing and compliance checks into continuous delivery processes to ensure secure and efficient deployment of containerized applications within Kubernetes environments.

• Security and Risk Management in DevOps

  Security and risk management in DevOps are crucial because they ensure that security is integrated into every stage of the software development lifecycle, mitigating potential risks and vulnerabilities early on.

  By focusing on security from the outset, DevOps teams can proactively identify and address security concerns, improving overall software quality, reducing security incidents, and enhancing organizational resilience. This approach aligns with DevSecOps principles, fostering collaboration between development, operations, and security teams to achieve secure, reliable, and compliant software delivery.

  Configuring Secure Web Application Cookies

  Configuring secure web application cookies is important in DevOps to protect against session hijacking and other attacks, ensuring that sensitive information transmitted via cookies is encrypted and properly validated to enhance application security.

  Developing Secure Web Applications that Prevent (Brute Force Attacks, Password Policies, Secure Logins, URL Validation, etc.)

  Developing secure web applications with robust security features such as prevention of brute force attacks, enforcing strong password policies, implementing secure login mechanisms, and validating input data helps mitigate common vulnerabilities and threats, ensuring applications are resilient against cyberattacks.

  Assessing AWS Infrastructure

  Assessing AWS infrastructure involves conducting security assessments and audits to identify and remediate security risks and misconfigurations, ensuring AWS environments adhere to security best practices and compliance requirements.

  Implementing Secure AWS Features (GuardDuty, Firewalls, Amazon Detective/Inspector, etc.)

  Implementing secure AWS features such as GuardDuty for threat detection, firewalls for network security, and Amazon Detective/Inspector for security assessments helps strengthen AWS security posture, providing continuous monitoring and detection of security threats and vulnerabilities.

  Utilizing AWS Security Hub

  AWS Security Hub provides a centralized view of security alerts and compliance status across AWS accounts, enabling DevOps teams to identify, prioritize, and remediate security findings to enhance overall security and compliance in AWS environments.

  Monitoring AWS Security Events

  Monitoring AWS security events in real-time allows DevOps teams to quickly detect and respond to security incidents, leveraging AWS CloudTrail, CloudWatch, and other monitoring tools to ensure proactive security monitoring and incident response.

  Writing Information System Continuous Monitoring (ISCM) Strategy Documents

  Developing ISCM strategy documents outlines the approach and methodologies for continuous monitoring of information systems, enabling DevOps teams to establish effective security monitoring practices and ensure timely detection and response to security threats and vulnerabilities.

  Writing Cloud Policy Audits

  Writing cloud policy audits involves defining and documenting policies for cloud security and compliance, ensuring that cloud environments adhere to organizational security standards and regulatory requirements through regular audits and assessments.

  Creating CI/CD and Azure Pipelines for Google Cloud Platform, AWS, Azure in GitLab

  Implementing CI/CD pipelines for multi-cloud environments using GitLab allows DevOps teams to automate secure software delivery, integrating security testing and compliance checks into continuous integration and deployment workflows for Google Cloud Platform, AWS, and Azure, ensuring secure and efficient deployment of applications across cloud platforms.

  Monitoring GCP Instances for Malicious Events

  Monitoring Google Cloud Platform (GCP) instances for malicious events involves leveraging platform-based logging systems such as Azure Log Analytics to collect and analyze logs, enabling DevOps teams to detect and respond to suspicious activities and security incidents in GCP environments.

  Utilizing Platform-Based Logging Systems (such as Azure Log Analytics)

  Leveraging platform-based logging systems like Azure Log Analytics enables DevOps teams to centralize and analyze logs and events from cloud environments, improving visibility into security events and enabling proactive threat detection and incident response.

  Creating CI/CD Pipelines for Automated Security Testing

  Creating CI/CD pipelines for automated security testing allows DevOps teams to integrate security testing tools and techniques into continuous delivery workflows, enabling automated vulnerability scanning, penetration testing, and compliance checks to ensure that applications are developed and deployed securely.

  Writing a Disaster Recovery Policy

  Developing a disaster recovery policy outlines procedures and protocols for responding to and recovering from disruptive events, ensuring business continuity and resilience in the face of disasters or unexpected incidents affecting cloud infrastructure and applications.

This course teaches the specific Knowledge, Skills, Abilities, and Tasks (KSATs) aligned with the DoD Cyber Workforce Framework (DCWF) as outlined in DoD 8140. By focusing on these critical competencies, the course ensures that you develop the essential capabilities required for various cybersecurity roles within the Department of Defense. This alignment not only guarantees that the training is relevant and comprehensive but also that it prepares you to meet the specific operational needs and standards of the DoD cyber workforce.

• knowledge

  ID	Description
  22	Knowledge of computer networking concepts and protocols, and network security methodologies.
  108	Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).
  1158	Knowledge of cybersecurity principles.
  1159	Knowledge of cyber threats and vulnerabilities.
  6900	Knowledge of specific operational impacts of cybersecurity lapses.
  6935	Knowledge of cloud computing service models Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS).
  6938	Knowledge of cloud computing deployment models in private, public, and hybrid environment and the difference between on-premises and off-premises environments.
  21	Knowledge of computer algorithms.
  25B	Knowledge of encryption algorithms.
  27A	Knowledge of cryptology.
  34	Knowledge of database systems.
  58	Knowledge of known vulnerabilities from alerts, advisories, errata, and bulletins.
  130	Knowledge of systems testing and evaluation methods.
  130A	Knowledge of systems security testing and evaluation methods.
  142A	Knowledge of the operations and processes for incident, problem, and event management.
  144	Knowledge of the systems engineering process.
  1037A	Knowledge of information technology (IT) risk management policies, requirements, and procedures.
  1139A	Knowledge of implementing enterprise key escrow systems to support data-at-rest encryption.
  1141A	Knowledge of an organization’s information classification program and procedures for information compromise.
  6240	Knowledge of critical protocols (e.g., IPSEC, AES, GRE, IKE).
  7087	Knowledge of programming languages.
  7088	Knowledge of continuous integration/continuous deployment (CI/CD) processes and pipeline tools.
  7089	Knowledge of portable, extensible, open source platform for managing containerized workloads and services.
  7090	Knowledge of cloud hosting providers.
  7091	Knowledge of threat modeling, risk assessment techniques, code reviews, current best practices and the latest cybersecurity threats.
  7092	Knowledge of how security impacts each development phase and the services.
  7093	Knowledge of a Continuous Integration/Continuous Deployment (CI/CD) environment and processes.
  7094	Knowledge of the steps for release to higher levels of integration testing, certification activities, and/or operations using testbeds, modeling and simulation to synchronize software releases with the development of an operations environment(s) to ensure compatibility.
  7095	Knowledge of every stage in the software project lifecycle, from initial design and build to rollout and maintenance.

• skills

  ID	Description
  3C	Skill in recognizing vulnerabilities in information and/or data systems.
  3B	Skill in conducting vulnerability scans and recognizing vulnerabilities in information systems and networks.
  190	Skill in developing operations-based testing scenarios.
  220	Skill in systems integration testing.
  225A	Skill in the use of penetration testing tools and techniques, including specialized tools for non-traditional systems and networks (e.g., control systems).
  238A	Skill in writing code in a currently supported programming language (e.g., Java, C++).
  3822	Skill in managing client relationships, including determining client needs/requirements, managing client expectations, and demonstrating commitment to delivering quality results.

• abilities

  ID	Description
  4	Ability to identify systemic security issues based on the analysis of vulnerability and configuration data.
  3030	Ability to conduct vulnerability scans and recognize vulnerabilities in security systems.
  6090	Ability to develop curriculum for use within a virtual environment.

• tasks

  ID	Description
  412A	Analyze the results of software, hardware, or interoperability testing.
  420	Apply security policies to meet security objectives of the system.
  421a	Apply security architecture principles to meet organization’s confidentiality, integrity, and availability requirements.
  452	Conduct functional and connectivity testing to ensure continuing operability.
  559B	Analyze and report system security posture trends.
  568	Employ secure configuration management processes.
  571	Ensure all systems security operations and maintenance activities are properly documented and updated as necessary.
  572	Ensure application of security patches for commercial products integrated into system design meet the timelines dictated by the management authority for the intended operational environment.
  576	Ensure cybersecurity-enabled products or other compensating security control technologies reduce identified risk to an acceptable level.
  653B	Implement security measures to mitigate or remediate vulnerabilities and security deficiencies, and provide justification for acceptance of residual risk.
  661A	Implement system security measures in accordance with established procedures to ensure confidentiality, integrity, availability, authentication, and non-repudiation.
  708A	Mitigate/correct security deficiencies identified during security/certification testing and/or recommend risk acceptance for the appropriate senior leader or authorized representative.
  717A	Assess and monitor cybersecurity related to system implementation and testing practices.
  726	Oversee and make recommendations regarding configuration management.
  729A	Verify minimum security requirements are in place for all applications.
  754	Perform cybersecurity testing of developed applications and/or systems.
  765	Perform security reviews, identify gaps in security architecture, and develop a security risk management plan.
  795	Properly document all systems security implementation, operations and maintenance activities and update as necessary.
  806A	Provides cybersecurity recommendations to leadership based on significant threats and vulnerabilities.
  809	Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials).
  876	Verify and update security documentation reflecting the application/system security design features.
  880A	Work with stakeholders to resolve computer security incidents and vulnerability compliance.
  938A	Provide advice and input for Disaster Recovery, Contingency, and Continuity of Operations Plans.
  2054	Assess the effectiveness of security controls.
  5050	Assess all the configuration management (change configuration/release management) processes.
  5940	Work with designers and developers thru out the design, development and testing process.
  5939	Choose and deploy the appropriate automated application security testing tools.
  5941	Utilize tools and techniques like risk assessment, threat modeling, and cybersecurity to detect and analyze the threats.
  5942	Work with Security Engineers to ensure that all security threats are dealt with during the development phase.
  5943	Work with Automation tools are used to identify the vulnerabilities.
  5944	Identify and implement tooling for controlling the steps in a continuous integration (CI) and continuous deployment (CD) pipeline.
  5945	Develop and implement automatic test tools in a CI/CD pipeline, which could include Static Application Security Test (SAST) tools, Dynamic Application Security Test (DAST) tools, Unit Test tools, Static Code Analysis (SCA) tools, etc.
  5946	Develop code within a CI/CD Pipeline.
  5947	Select appropriate language and coding standards for software application for appropriate Continuous Integration/Continuous Deployment (CI/CD) framework.
  5948	Apply testing activities, understands fault vs. failures, conduct basic test planning, develop test selection or adequacy criteria, crafts test documentation, ensures test coverages, and conducts automated testing.
  5950	Develop and deploy software using continuous integration methods, processes, and tools, including test case writing against completion criteria (for each release, capability, micro-service, or component), build automation, and build processes.
  5951	Select and implement telemetry within the CI/CD pipeline and Ops software to support metrics and problem discovery and resolution.
  5953	Provide DevSecOps guidance to leadership.
  5954	Build test interfaces and perform complex integration.
  5955	Work closely with development teams to provide and support the environment needed to deliver an organization’s services.