
Learn why this devsecops course matters for beginners, identify the target audience—freshers in security engineering and it professionals—and explain the high demand and opportunities in the field.
Explore key security terms used in DevSecOps, including SAST, SCA, DAST, IEC, infrastructure as code testing, and API security, and learn how they guide manual and automated risk checks.
Explore DevSecOps by integrating security early in the software development lifecycle, applying shift-left practices, secure coding checklists, automation, and PCI, DSS standards across infrastructure and container workflows.
Explore enterprise devsecops tooling, from git secrets and ide security plugins to sast, dynamic application security testing, sca, iac, and container security, plus build and cloud posture tools.
Create a TeamCity cloud account using GitHub for a 14-day trial, and explore cloud versus self-hosted options, including Professional and Enterprise plans with build agents and credits.
Create a SonarCloud account by signing in with GitHub, review the dashboard, and understand how to set up projects as a foundation for SAST in a DevSecOps pipeline.
Enable a version control system (VCS) trigger in TeamCity to automatically trigger the DevSecOps build pipeline when code changes are pushed to GitHub.
Identify a high-severity command injection flaw found by SonarCloud during SAST and report it in Jira as a bug with scan details to guide devs in sprint one.
Demonstrate reporting a sca security issue found by snyk in jira, detailing an injection vulnerability in Morgan Library 1.9.0 and its fix to 1.9.1, with scan data and workflow.
Course Updates:
v 3.0 - May 2024
Added DevSecOps Handbook document in Section 9
v 2.0 - March 2024
Updated lecture 12 with JDK 17 changes for SonarCloud
v 1.0 - Feb 2023
Updated course with newer videos on Integrate JIRA with SonarCloud/SonarQube
Who shall take this course?
This "DevSecOps with TeamCity" course is designed for Security Engineers, DevOps Engineers, SRE, QA Professionals and Freshers looking to find a job in the field of security. This is a focused GitLab DevSecOps course with a special focus on integrating SAST/SCA/DAST tools in Build pipeline.
Learn and implement security in DevOps pipeline, get Hands On experience in using Security tools & technologies.
This course is for:
Developers
DevOps
Security Engineers
Aspiring professional in the Security domain
Quality Assurance Engineers
InfoSec/AppSec Professional
DevSecOps being the hot skill, will help you to secure a high-salaried job and stay informed on the latest market trends.
Why purchase this course?
This is only practical hands-on course available on the internet till now.
DevSecOps enables rapid application development with agility, at the same time it secures your application with automated security checks integrated within the pipeline. It helps to increase productivity and security by integrating security stages in the pipeline.
Also, we have included practical examples to implement security in the DevOps pipeline through various tools.
By the end of the course, you will be able to successfully implement DevOps or DevSecOps pipeline and lead initiatives to create, build and maintain security pipelines in your project.
No Action required before taking this course. For any question or concerns, Please post your comments on discussions tab
Disclaimer: English subtitles are auto-generated so please ignore any grammar mistakes