IT-professional

SecDevOps Practitioner® (SDOP) Certification Training

This SecDevOps Practitioner® (SDOP) Certification Training follows the SecDevOps foundational practice in Course 3695, SecDevOps Foundation® (SDOF) Certification Training.

While the foundation course provides a basic understanding and outlines the roadmap for implementation, this practitioner-level class adds a range of techniques for a more comprehensive understanding of SecDevOps. This includes achieving optimum outcomes by designing the right pipeline architecture, creating an effective team, and establishing best-practice processes.

Course objectives

In this SDOP Certification training, you will learn how to:

  • Prepare for the DevOps Institute SecDevOps Practitioner Certification (SDOP) with the world’s first accredited SecDevOps Practitioner course.
  • Establish SecDevOps maturity guidance for people processes and technology.
  • Implement and optimise typical pipeline tools to improve CI/CD/CC results.
  • Gather effective metrics to streamline, verify, and tune pipeline operations.
  • Follow architectural best practices, including immutable infrastructure and high observability.
  • Leverage experimentation to achieve highly effective automated security protection.
  • Improve team performance following the leadership-at-all-levels approach.
  • Case studies, group collaborations, and practical hands-on exercises using specific pipeline tools are included.
  • Receive official certification from the DevOps Institute (DOI).
  • Continue learning and face new challenges with after-course one-on-one instructor coaching.

Prerequisites

SecDevOps Foundational certification (SDOF) is expected, or DevOps Foundational certification or DevSecOps Foundational certification.

Prospective attendees can confirm their prerequisite knowledge by taking the pre-course skills assessment (which takes approximately 15 minutes).

Certification

  • For certification, successfully pass (65%) the 90-minute examination, consisting of forty multiple-choice.
  • The certification and exam are governed and maintained by DevOps Institute.
  • The exam is conducted online and is open book.
  • A sample exam is provided to attendees at the end of the class.
  • A complimentary voucher to take the exam is provided by Learning Tree International.

Outline

Module 1: Determining Organisational SecDevOps Maturity

  • Know where you are so you can start from where you are 
  • What level are your people, processes, and pipelines 

Collaboration: Guidance metrics for people and process

Hands-On: Executing and debugging the case-study pipeline

Module 2: Applying Automation Metrics

  • Improve feedback to understand what is most important

Hands-On: Reviewing metrics from the case-study pipeline

Collaboration: What 2nd metrics are missing?

  • Metric isolation and accuracy for incremental experimentation

Collaboration: Third-way considerations

Hands-On: Implementing a third-way spike

Module 3: Designing, Architecting, and Planning for SecDevOps

  • Planning and architectural structure best practices
  • What does security first actually mean?

Collaboration: What architecture do we have/should we have?

Hands-On: Architecture and security improvements to case study pipeline

Collaboration: Observing functional and security outcomes

Module 4: Creating Practical SecDevOps Infrastructure

  • Lessons from Site Reliability Engineering

Collaboration: Aiding resilience for SRE (Site Reliability Engineering)

  • Examining immutability for deployment
  • High observability strategies for availability and security

Hands-On: Immutable deployment and high observability

Module 5: Other Security Considerations beyond the Pipeline

  • Before and after development (acquisition and disposal)

Collaboration: Is such-and-such a tool safe?

Module 6: Next Steps

  • Ongoing best practices and analysis of outcomes

Collaboration: Personal Action Planning