Teach on Udemy

Turn what you know into an opportunity and reach millions around the world.

Learn More

Your cart is empty.

Keep shopping

Ultimate DevSecOps Bootcamp by School of Devops

Name: Ultimate DevSecOps Bootcamp by School of Devops
Rating: 4.6 (17 reviews)

Build Complete DevSecOps Pipeline with Container Based Delivery, CI/CD on Kubernetes with all Open Source Tools

Created byGourav J. Shah, School of Devops

Last updated 4/2025

English

What you'll learn

Understand the core principles of DevSecOps and how they integrate into modern software delivery pipelines.
Set up a complete learning environment using Google Cloud Platform, Kubernetes (GKE), and essential DevOps tools.
Build a secure CI/CD pipeline using Jenkins, Helm, Docker, and Kubernetes.
Implement Software Composition Analysis (SCA) using OWASP Dependency-Check, Pyraider, and Dependency-Track to identify and manage third-party risks.
Apply Static Application Security Testing (SAST) using tools like slscan and integrate them into your CI/CD pipeline.
Conduct Dynamic Application Security Testing (DAST) using OWASP ZAP during deployment stages to catch runtime vulnerabilities.
Harden container images using Dockle, Trivy, and multi-stage Dockerfiles to reduce the attack surface.
Manage sensitive credentials and enforce secure secrets injection using HashiCorp Vault with Kubernetes.
Enforce system-level compliance and infrastructure hardening using InSpec and Ansible as Compliance-as-Code tools.
Secure Kubernetes workloads by implementing security contexts, Pod security policies, resource limits, and runtime scanning tools like Falco.
Build and deploy AI/ML and containerized applications securely using GitOps practices with ArgoCD.
Automate runtime anomaly detection and remediation using Falco and Argo Workflows.
Understand the Software Bill of Materials (SBOM) and integrate SBOM generation into your pipeline.
Design an end-to-end secure DevOps pipeline for real-world applications, from code to production, with continuous security monitoring.

Course content

13 sections • 147 lectures • 9h 37m total length

Welcome to DevSecOps Bootcamp2:01

Module Intro1:19
Learning Objectives0:17
What is Software Component Analysis4:09
Using the Dependency Checker for SCA4:13
Using Pyraider as a Python SCA5:09
Adding the Software Composition Analysis (SCA) Stage to the Pipeline4:50
Scanning Open Source Licenses5:03
Setting up Dependency Tracker5:31
Troubleshooting Kubernetes Resource Issues7:59
Lab Guide0:06
Connecting Jenkins with Dependency Tracker5:53
Adding SBOM Stage to the Pipeline7:40
Cleaning up5:37
Reading List/References0:18
Summary0:15

Module Intro1:28
Learning Objectives0:22
Secure Deployments with GitOps2:51
Setting Up ArgoCD6:02
Configuring the ArgoCD CLI4:27
Kubernetes Deployment Objects6:10
Generating Kubernetes YAML Manifests5:43
Deploying to Kubernetes with ArgoCD6:41
Secure Deployment Workflow - Argo + Jenkins1:00
Authorizing Jenkins to Deploy Remotely with Argo7:16
Adding an Automated Deploy Stage to the Jenkins Pipeline7:20
DAST with OWASP ZAP1:08
DAST Scan with ZAP5:21
Lab Guide0:06
Summary0:15

Module Intro1:42
Learning Objectives0:12
Compliance as a Code and InSpec1:22
Compliance Scanning with InSpec9:35
Using the DevSec Hardening Framework5:56
Configuring the SSH Pipeline Steps Plugin9:47
Troubleshooting SSH in the Pipeline5:19
Adding the Compliance Scan to the Pipeline4:07
Installing and Configuring Ansible5:03
Enforcing Compliance Remediation with Ansible6:32
Modifying InSpec Controls4:57
Running Daily SecOps Pipeline6:55
Lab Guide0:06
Summary0:07

Module Intro2:24
Learning Objectives0:26
Securing Kubernetes0:47
Setting Up a Single Node Kubernetes Environment7:34
Running CIS Benchmark Scans for Kubernetes5:25
Hunting for Vulnerabilities with Kube Hunter5:48
Scanning the Kubernetes Deployment Code with Kubesec5:20
Defining Resource Constraints3:04
Add resource definitions to the deployment by setting cpu and memory requests and limits, using 50 millicores and 128 Mi to 256 Mi, per cube scan for security and balance.
Configuring the Security Context for a Pod12:37
Mounting the Root Filesystem as Read-Only6:13
System Calls and the SecComp Profile1:39
Further Reading0:17
Restricting Syscalls with Seccomp8:31
Configuring RunAsUser and ServiceAccounts9:08
Lab Guide0:06
Summary0:15

Requirements

Familiarity with DevOps concepts and basic CI/CD workflows is recommended.
Prior experience with Docker and Kubernetes is helpful but not mandatory.
Access to a GCP account or any cloud environment for hands-on labs.
No deep security knowledge required — everything is explained step by step.

Description

Are you building or deploying applications on Kubernetes? Whether you're a DevOps Engineer, Platform Engineer, or AI/ML Engineer, security can no longer be an afterthought.

This hands-on DevSecOps Bootcamp will help you build secure, production-ready CI/CD pipelines using open-source tools and industry best practices. Learn how to integrate security across the software development lifecycle and ensure your applications are secure by design.

We will walk you through step-by-step labs that combine Jenkins, Kubernetes, ArgoCD, Vault, Trivy, Falco, OWASP ZAP, and other essential tools used in modern DevSecOps workflows.

This course is ideal for teams building cloud-native applications, AI/ML models, or any containerized workload that needs to be deployed securely at scale.

What You Will Learn:

Core DevSecOps principles and the secure software delivery lifecycle
How to build a CI/CD pipeline with Jenkins on Kubernetes
Software Composition Analysis (SCA) using OWASP Dependency-Check, Pyraider, and Dependency-Track
Static and Dynamic Application Security Testing (SAST & DAST) using slscan and OWASP ZAP
Securing container images using Trivy, Dockle, and multi-stage Dockerfiles
Enforcing compliance as code using InSpec and Ansible
Secrets management using HashiCorp Vault and Kubernetes RBAC
Runtime security monitoring using Falco with automated response pipelines
Secure deployment workflows with GitOps using ArgoCD and Kubernetes

Tools and Technologies You Will Use:

Jenkins, Helm, Kubernetes (GKE), ArgoCD
Trivy, Dockle, OWASP ZAP, slscan, Pyraider
Vault, InSpec, Ansible, Falco, Argo Workflows
Docker, Kubernetes RBAC, GitHub, GitOps

Who Should Take This Course:

DevOps and Cloud Engineers who want to add security to their toolbelt
AI/ML Engineers deploying models and services on Kubernetes
Platform Engineers managing modern microservices at scale
Security Engineers transitioning to DevSecOps practices
Developers building containerized applications for production

This is not a theoretical course. You will be working on real-world labs and projects that simulate what modern engineering teams do to secure their software pipelines in production environments.

Whether you're deploying a machine learning model, a microservice, or a SaaS product — this course will help you ensure that your deployments are secure, scalable, and compliant.

Who this course is for:

DevOps, Cloud, and Platform Engineers looking to build secure delivery pipelines.
AI/ML Engineers deploying models and services on Kubernetes or in production environments.
Developers who want to integrate security into their DevOps workflows.
Security professionals and SREs transitioning into DevSecOps roles.
Anyone responsible for deploying, securing, and maintaining modern applications at scale.

Ultimate DevSecOps Bootcamp by School of Devops

What you'll learn

Explore related topics

Course content

Welcome to this Course1 lecture • 2min

Introduction to DevSecOps13 lectures • 20min

Setting Up a Learning Environment8 lectures • 34min

Building a DevOps Pipeline10 lectures • 46min

Securing the Supply Chain with SCA15 lectures • 58min

Static Application Security Testing (SAST)9 lectures • 33min

Auditing Container Images12 lectures • 46min

Secure Deployment and Dynamic Application Security Testing DAST15 lectures • 56min

System Security Auditing with IaaC14 lectures • 1hr 2min

Securing Kubernetes Deployments16 lectures • 1hr 10min

Requirements

Description

Who this course is for: