EC-Council Certified DevSecOps Engineer (ECDE v2)

Price
$1,799.00 USD

Duration
3 Days

 

Delivery Methods
Virtual Instructor Led
Private Group

Request More Information
Download Course Details
Course Details Only
Course Details & Schedule
Skip to Class Dates

Course Overview

EC-Council Certified DevSecOps Engineer (ECDE) is a hands-on, instructor-led comprehensive DevSecOps certification program which helps professionals to build essential knowledge and abilities in designing, developing, maintaining a secure applications and infrastructure.

This course is blended with both theoretical knowledge as well as the practical implementation of DevSecOps in your on-prem and cloud-native (AWS and Azure) environment. It will also cover integration and automation of all the major and widely used tools, processes, and methodologies of DevSecOps that help organizations to build secure applications rapidly in a DevOps environment.

Course Objectives

  • The information provided in the E|CDE course is complemented with practical implementation of labs that allows you to easily get DevSecOps Engineer job in any part of the world.
  • Whether your organization workloads or applications deployed in on-premises or cloud-native environment (AWS or Azure), this course will teach you how to use various DevSecOps tools and secure the application code throughout the software development lifecycle.
  • The DevSecOps security tools that help in secure development of software products or web applications are subtly segregated into On-premises and Cloud-native environment.
  • The E|CDE course not only focuses on Application DevSecOps, but it also provides insights into infrastructure DevSecOps.
  • The integration of all the popular and important tools are illustrated in respective stages of DevOps lifecycle.
  • The E|CDE program helps DevSecOps Engineer to develop and enhance their knowledge and skills in securing the application in all the stages of DevOps.
  • This makes the certification stand apart from all other DevSecOps certification programs available in the market.

Who Should Attend?

  • DevSecOps Engineer/Senior DevSecOps Engineer
  • Cloud DevSecOps Engineer
  • Azure DevSecOps Engineer
  • AWS DevSecOps Engineer
  • DevSecOps Analyst
  • DevSecOps Specialist
  • DevSecOps Operations Engineer
  • DevSecOps Systems Administrator
  • DevSecOps System Engineer
  • DevSecOps Consultant
  • DevSecOps Systems Engineer
  • DevSecOps CI/CD Engineer
  • Infrastructure DevSecOps Engineer
  • Top-rated instructors: Our crew of subject matter experts have an average instructor rating of 4.8 out of 5 across thousands of reviews.
  • Authorized content: We maintain more than 35 Authorized Training Partnerships with the top players in tech, ensuring your course materials contain the most relevant and up-to date information.
  • Interactive classroom participation: Our virtual training includes live lectures, demonstrations and virtual labs that allow you to participate in discussions with your instructor and fellow classmates to get real-time feedback.
  • Post Class Resources: Review your class content, catch up on any material you may have missed or perfect your new skills with access to resources after your course is complete.
  • Private Group Training: Let our world-class instructors deliver exclusive training courses just for your employees. Our private group training is designed to promote your team’s shared growth and skill development.
  • Tailored Training Solutions: Our subject matter experts can customize the class to specifically address the unique goals of your team.

Learning Credits: Learning Credits can be purchased well in advance of your training date to avoid having to commit to specific courses or dates. Learning Credits allow you to secure your training budget for an entire year while eliminating the administrative headache of paying for individual classes. They can also be redeemed for a full year from the date of purchase. If you have previously purchased a Learning Credit agreement with New Horizons, you may use a portion of your agreement to pay for this class.

If you have questions about Learning Credits, please contact your Account Manager.

Corporate Tech Pass: Our Corporate Tech Pass includes unlimited attendance for a single person, in the following Virtual Instructor Led course types: Microsoft Office, Microsoft Technical, CompTIA, Project Management, SharePoint, ITIL, Certified Ethical Hacker, Certified Hacking Forensics Investigator, Java, Professional Development Courses and more. The full list of eligible course titles can be found at https://www.newhorizons.com/eligible.

If you have questions about our Corporate Tech Pass, please contact your Account Manager.

Course Prerequisites

At least two years of work experience in information security, such as network security or systems administration. A solid understanding of network security, system security, and cybersecurity concepts. Familiarity with Windows and Linux/Unix operating systems. Certification in or equivalent knowledge to CompTIA Network+ and CompTIA Security+. TCP/IP networking, security frameworks such as ISO27001, data standards such as PCI-DSS & GDPR, and shell scripting

Agenda

Module 01 Understanding DevOps Culture

  • Understand the Evolution of the Software Development Life Cycle
  • Understand what DevOps is
  • Learn to Implement DevOps in an On-Premises Environment
  • Learn to Implement DevOps in an AWS Cloud Native Environment
  • Learn to Implement DevOps in an Azure Cloud Native Environment
  • Learn to Implement DevOps in a Google Cloud Native Environment
  • Understand the Frameworks and Maturity Model in DevOps
  • Evaluate Security Silos in DevOps

Module 02 Introduction to DevSecOps

  • Addressing DevOps Process Security Bottlenecks and Challenges
  • Understand DevSecOps
  • Understand DevSecOps Culture
  • Understand Continuous Security in DevSecOps
  • Understand the DevSecOps Pipeline
  • Understand DevSecOps Strategy
  • Understand DevSecOps Tools
  • Leveraging Artificial Intelligence (AI) in DevSecOps

Module 03 DevSecOps Pipeline-Plan Stage

  • Understand Continuous Threat Modeling in the DevSecOps Pipeline
  • Learn to Integrate Threat Modeling Tools
  • Learn to Gather Security Requirements from Business Functionality
  • Address Technical Security Debts
  • Learn to Run Pre-Commit Checks in the Plan Stage
  • Understand Secure Code Training and Awareness
  • Understand Security Tools Training

Module 04 DevSecOps Pipeline-Code Stage

  • Learn to Integrate Security Plugins in IDEs
  • Learn to Configure and Manage Code Scanning for GitHub Repository
  • Learn to Integrate and Scan Source Code Repository
  • Learn to Integrate Secret Management Tools
  • Learn to Integrate Software Composition Analysis (SCA) Tools

Module 05 DevSecOps Pipeline-Build and Test Stage

  • Learn to Integrate SAST Tool
  • Learn to Integrate SAST Tool with AWS Cloud
  • Learn to Integrate SAST Tool with Microsoft Azure
  • Learn to Integrate SAST Tool with Google Cloud
  • Conducting Manual Secure Code Review
  • Learn to Integrate DAST Tool
  • Learn to Integrate DAST Tool with AWS
  • Learn to Integrate DAST Tool with Microsoft Azure
  • Learn to Integrate DAST Tool with Google Cloud
  • Learn to Integrate IAST Tool
  • Understand Security Testing Framework

Module 06 DevSecOps Pipeline-Release and Deploy Stage

  • Learn to Integrate RASP Tool
  • Learn to Conduct Penetration Testing
  • Learn to Integrate Vulnerability Scanning Tool
  • Understand Bug Bounty Program
  • Learn to Integrate Threat Detection Tools
  • Understand Infrastructure Deployment using Infrastructure as Code (IaC)
  • Learn Infrastructure Provisioning as Code (IaC) using Terraform
  • Learn Infrastructure Provisioning as Code (IaC) using Pulumi
  • Learn to Integrate AWS CloudFormation
  • Learn to Integrate Configuration Orchestration Tools: Ansible
  • Learn to Integrate Configuration Orchestration Tools: Chef
  • Learn to Integrate Configuration Orchestration Tools: Puppet
  • Learn to Integrate Configuration Orchestration Tools: Azure Resource Management
  • Learn to Integrate Binary Authorization to Secure GCP Deployment

Module 07 DevSecOps Pipeline-Operate and Monitor Stage

  • Understand Security Activities in the Operate and Monitor Stage
  • Learn to Scan Infrastructure as Code (IaC) for Vulnerabilities
  • Learn to Scan Infrastructure for Vulnerabilities
  • Learn to Secure Containers
  • Learn to Integrate Container Vulnerability Scanning Tools
  • Learn to Secure Jenkins
  • Learn to Integrate Compliance as Code (CaC) Tools
  • Learn to Integrate Logging, Monitoring, and Alerting Tools
  • Understand Monitoring Features in AWS
  • Understand Monitoring Features in Azure
  • Understand Monitoring Features in Google Cloud
  • Learn to Integrate WAF
  • Learn to Integrate Patch Management
  • Learn to Integrate Continuous Feedback
  • Understand Incident Reponse in DevSecOps
  • Understand High Availability, Fault Tolerance, and Disaster Recovery in DevSecOps
 

Get in touch to schedule training for your team
We can enroll multiple students in an upcoming class or schedule a dedicated private training event designed to meet your organization’s needs.

CourseID: 3602733E
               
 



Do You Have Additional Questions? Please Contact Us Below.

contact us contact us 
Contact Us about Starting Your Business Training Strategy with New Horizons