DevSecOps with GitLab Secure CICD with GitLab 2022
What you’ll learn
Learn DevSecOps implementation with GitLab
Learn SAST Integration with GitLab
Learn SCA Integration with GitLab
Learn DAST integration with GitLab
Learn to report security issues in JIRA
Learn to implement SonarQube/SonarCloud in DevSecOps Pipeline
Learn to implement Snyk in DevSecOps Pipeline
Learn to implement OWASP ZAP in DevSecOps Pipeline
Learn to populate code coverage on Sonar Dashboard
Requirements
Basic computer knowledge
Good to have interest in Security domain
Description
Who shall take this course?This “DevSecOps with GitLab” course is designed for Security Engineers, DevOps Engineers, SRE, QA Professionals and Freshers looking to find a job in the field of security. This is a focused GitLab DevSecOps course with a special focus on integrating SAST/SCA/DAST tools in Build pipeline. Learn and implement security in DevOps pipeline, get Hands On experience in using Security tools & technologies. This course is for:DevelopersDevOpsSecurity EngineersAspiring professional in the Security domainQuality Assurance EngineersInfoSec/AppSec Professional DevSecOps being the hot skill, will help you to secure a high-salaried job and stay informed on the latest market trends. Why purchase this course?This is only practical hands-on course available on the internet till now.DevSecOps enables rapid application development with agility, at the same time it secures your application with automated security checks integrated within the pipeline. It helps to increase productivity and security by integrating security stages in the pipeline.Also, we have included practical examples to implement security in the DevOps pipeline through various tools.By the end of the course, you will be able to successfully implement DevOps or DevSecOps pipeline and lead initiatives to create, build and maintain security pipelines in your project.No Action required before taking this course. For any question or concerns, Please post your comments on discussions tabDisclaimer: English subtitles are auto-generated so please ignore any grammar mistakes
Overview
Section 1: Introduction
Lecture 1 Introduction & Course Agenda
Lecture 2 About the Course
Lecture 3 About Instructor
Section 2: Deep Dive into DevSecOps
Lecture 4 Basic Security Terms – If new to security field
Lecture 5 What is DevSecOps?
Lecture 6 Tools used for DevSecOps Implementation in the market – Detailed discussion
Lecture 7 DevSecOps in GitLab
Section 3: Hands On – Implementing DevSecOps Pipeline in GitLab
Lecture 8 Create GitLab Free Tier Account
Lecture 9 Import Vulnerable source code repo in GitLab from GitHub account
Lecture 10 Create master branch and make it default for the source code repo in GitLab
Lecture 11 Write a simple .gitlab-ci.yml file and print text using GitLab shared runner
Section 4: Implement SAST in GitLab DevSecOps Pipeline using SonarCloud
Lecture 12 What is SonarCloud and its benefits?
Lecture 13 Create an account with SonarCloud before implementing SAST in DevSecOps Pipeline
Lecture 14 Hands-On: Integrate SonarCloud within GitLab DevSecOps pipeline
Lecture 15 Hands-On: Populate Unit Test Code Coverage on SonarCloud Dashboard for DevSecOps
Section 5: Implement SCA in GitLab DevSecOps Pipeline using Snyk
Lecture 16 What is Snyk and its benefits?
Lecture 17 Create an account with Snyk before implementing SCA in DevSecOps Pipeline
Lecture 18 Hands-On: Integrate Snyk within GitLab DevSecOps Pipeline to perform SCA
Section 6: Implement DAST in GitLab DevSecOps Pipeline using OWASP ZAP
Lecture 19 What is OWASP ZAP and its benefits?
Lecture 20 Hands-On: Integrate OWASP ZAP within GitLab DevSecOps Pipeline to perform DAST
Section 7: Report Security issues found during SAST, SCA & DAST scans in JIRA
Lecture 21 Hands On: Create a JIRA account with Atlassian with custom JIRA site
Lecture 22 Hands On: Report SAST security issues in JIRA identified by SonarCloud
Lecture 23 Hands On: Report SCA security issues in JIRA identified by Snyk
Lecture 24 Hands On: Report DAST security issues in JIRA identified by OWASP ZAP
Section 8: Next Steps and Bonus section
Lecture 25 Optional: Security As a Career
Lecture 26 Sample DevSecOps Engineer CV
Lecture 27 Bonus Lecture
DevSecOps Engineers,DevOps Engineers,Cloud Security Engineers
Course Information:
Udemy | English | 2h 1m | 650.18 MB
Created by: A Security Guru
You Can See More Courses in the IT & Software >> Greetings from CourseDown.com