DevSecOps stands for development, security, and operations. It’s an approach to culture, automation, and platform design that integrates security as a shared responsibility throughout the entire IT lifecycle. DevOps isn’t just about development and operations teams. If you want to take full advantage of the agility and responsiveness of a DevOps approach, IT security must also play an integrated role in the full life cycle of your apps.
This course is a complete step by step guide for implementing best security practices and tools on your DevOps framework. You will start from the very basics by exploring the DevOps architecture and how it is related to DevSecOps. The you will learn the two main container management platforms: Docker and Kubernetes. You will master container management, working with Docker files, getting and building your own container images and optimizing them.
In the rest of the sections you will master the implementation of the extra security layer on your DevOps tools. Firstly, you will learn how to use the Docker Registry and build a registry on your own. I will show you how to use Docker Content Thrust and protect your docker daemon and host by applying Apparmor and Seccomp security profiles, implementing Docker Bench Security and and auditing the your Docker host. You will also learn how to protect and analyze vulnerabilities your docker images to prevent corruption using Clair, Quay, Anchore and the CVE database. You will explore how to create and manage Docker secrets, networks and port mapping. You will be able to use security monitoring tools such as cAdvisor, Dive, Falco and administration tools such as Portainer, Rancher and Openshift.
Finally you will focus on Kubernetes Security practices. You will learn how to find, solve and prevent Kubernetes security risks and apply best security practices. I will show you how to use KubeBench and Kubernetes Dashboard to enhance your Kubernetes Security and Prometheus and Grafana to monitor and observe our Kubernetes clusters for vulnerabilities.
Who this course is for:
- DevOps engineers
- Software engineers
- Managers who wish to apply security on their DevOps projects
- Software engineering students
- Computer science students
- Cybersecurity professionals
- Software developers
What you’ll learn
- Apply security to the main container platforms: Docker and Kubernetes
- Learn best Docker security practices
- Create your own rived image registry to prevent images to be accessible to the world
- Review Docker Content Trust and Docker Registry
- Upload images to Docker Hub, Quay and Harbor
- Implement Docker daemon security
- Implement AppArmor and Seccomp security profiles to provide Linux kernel enhancement features
- Implement Docker Bench Security
- Learn best Docker security practices
- Discover Docker vulnerabilities using Clair and Anchore
- Learn static security analysis tools
- Explore the main Docker container threats
- Learn how to create Docker secrets
- Link Docker containers
- Docker networking security
- Manage CPU, memory and RAM performance of your containers
- Administrate your Docker containers with Portainer and Rancher
- Launch Kubernetes using Minikube
- Apply least privilege principle to protect Kubernetes clusters
- Use CIS Kubernetes Benchmark guide
- Analyze security and vulnerabilities in Kubernetes pods, clusters and nodes
- Monitor Kubernetes in production using Prometheus and Grafana
HOMEPAGE – https://www.udemy.com/course/dev-sec-ops/
Free Download Link-
Note: Comment below if you find the download link dead.
0 Comments