advanced-cloud-security-and-applied-SecDevOps

Advanced Cloud Security and Applied SecDevOps

Real-world cloud security is most definitely not business as usual.

Advanced Cloud Security and Applied SecDevOps

The Course Modules

DAY 1

  • Use of accounts for managing blast radius.
  • Building out advanced cloud virtual networks.
  • Leveraging inherent cloud capabilities for network security.
  • Use of DNS management, auto scale groups, load balancers, and other technologies for immutable infrastructure.
  • Advanced Identity and Access management for cloud, including setting up SAML federation across providers.
  • Privileged user management, MFA, and other access essentials.
  • Securing PaaS and mixed IaaS/PaaS architectures.

DAY 2

Day two shifts gears to focus on designing secure architectures, integrate with DevOps, and build your own SecDevOps toolkit for managing cloud security at scale.

  • Fundamentals of SecDevOps.
  • Building secure deployment pipelines.
  • Integrating automated security testing into deployment pipelines.
  • Cloud security architectural patterns for major application types.

DAY 2 CONT.

  • Cloud data security and encryption.
  • Automating continuous security monitoring and alerting using cloud native capabilities.
  • Security automation through the console.
  • Security automation through code.
  • Scaling your security operations to hundreds (or thousands) of accounts through automation.

LABS

Most labs will be in Amazon Web Services, with some demonstrations and integrations with Microsoft Azure.

All programming labs will use Ruby or Python.

Text snippets will be provided so students don’t need to code from scratch, but some knowledge is suggested.

WHO SHOULD TAKE THIS COURSE

Technical professionals wanting to expand their hands on knowledge of cloud security and SecDevOps.

STUDENT REQUIREMENTS

Students should have basic familiarity with at least one public cloud provider (Amazon or Azure) and hands-on experience launching and managing basic instances/services. They should also be comfortable with the command line and basic scripting.

Additionally we highly encourage students to understand basic Ruby programming for the coding portions. Code snippets will be provided, so students with experience in other languages should be able to keep up.

WHAT STUDENTS SHOULD BRING

A laptop with SSH and wireless connectivity. Students MUST sign up for Amazon Web Services and Microsoft Azure before training begins, and bring their credentials and keys.

WHAT STUDENTS WILL BE PROVIDED WITH

Electronic training materials