Certified DevSecOps Engineer v1

Certified DevSecOps Engineer v1

ОПИСАНИЕ НА ОБУЧЕНИЕТО

E|CDE Lab-intensive program with more than 80+ skillbased labs. IT covers Covers both application and infrastructure DevSecOps of onpremises and cloud-native platforms.

EC-Council’s Certified DevSecOps Engineer (E|CDE) is a hands-on, instructor-led comprehensive DevSecOps certification program that helps professionals build the essential skills needed to design, develop, and maintain secure applications and infrastructure.
The E|CDE covers both on-premises and cloud-native environments (including AWS Cloud and Microsoft Azure) with 80+ labs from the creators of the world’s number one ethical hacking program, the Certified Ethical Hacker (C|EH).
• Designed and developed by SMEs with contributions by experienced DevSecOps professionals from around the world.

WHAT YOU’LL LEARN:
• The E|CDE course focuses on application DevSecOps and provides insights into infrastructure DevSecOps.
• Learn how to create secure application code and integrate security into all eight stages of the DevOps life cycle.
• The program covers how to use cutting-edge DevSecOps tools in both on-premises and cloud environments, including Amazon Web Services (AWS) Cloud and Microsoft Azure.

What Will Students Learn?
Understand DevOps security bottlenecks and discover how the culture, philosophy, practices, and tools of DevSecOps can enhance collaboration and communication across development and operations teams.
· Understand the DevSecOps toolchain and how to include security controls in automated DevOps pipelines.
· Integrate Eclipse and GitHub with Jenkins to build applications.
· Align security practices like security requirement gathering, threat modeling, and secure code reviews with development workflows.
· Integrate threat modeling tools like Threat Dragon, ThreatModeler, and Threatspec; manage security requirements with Jira and Confluence; and use Jenkins to create a secure CI/CD pipeline.
· Understand and implement continuous security testing with static, dynamic, and interactive application security testing and SCA tools (e.g., Snyk, SonarQube, StackHawk, Checkmarx SAST, Debricked, WhiteSource Bolt).
· Integrate runtime application self-protection tools like Hdiv, Sqreen, and Dynatrace that protect applications during runtime with fewer false positives and remediate known vulnerabilities.
· Integrate SonarLint with the Eclipse and Visual Studio Code IDEs.
· Implement tools like the JFrog IDE plugin and the Codacy platform.
· Integrate automated security testing into a CI/CD pipeline using Amazon CloudWatch; Amazon Elastic Container Registry; and AWS CodeCommit, CodeBuild, CodePipeline, Lambda, and Security Hub.
· Implement various automation tools and practices, including Jenkins, Bamboo, TeamCity, and Gradle.
Perform continuous vulnerability scans on data and product builds using automated tools like Nessus, SonarCloud, Amazon Macie, and Probely.
· Implement penetration testing tools like gitGraber and GitMiner to secure CI/CD pipelines.
· Use AWS and Azure tools to secure applications.
· Integrate automated tools to identify security misconfiguration`s that could expose sensitive information and result in attacks.
· Understand the concept of infrastructure as code and provision and configure infrastructure using tools like Ansible, Puppet, and Chef.
· Audit code pushes, pipelines, and compliance using logging and monitoring tools like Sumo Logic, Datadog, Splunk, the ELK stack, and Nagios.
· Use automated monitoring and alerting tools (e.g., Splunk, Azure Monitor, Nagios) and create a real-time alert and control system.
· Integrate compliance-as-code tools like Cloud Custodian and the DevSec framework to ensure that organizational regulatory or compliance requirements are met without hindering production.
· Scan and secure infrastructure using container and image scanners (Trivy and Qualys) and infrastructure security scanners (Bridgecrew and Checkov).
· Integrate tools and practices to build continuous feedback into the DevSecOps pipeline using Jenkins and Microsoft Teams email notifications.
· Integrate alerting tools like Opsgenie with log management and monitoring tools to enhance operations performance and security.

ЗА КОГО Е ПРЕДНАЗНАЧЕНО

WHY CHOOSE E|CDE?
• Covers application and infrastructure DevSecOps in on-premises and cloud environments
• Aligned with real-world job roles and responsibilities of DevSecOps engineers
• Over 80 skills-based labs
• On-premises and cloud-native security practices
• Lab-intensive program (70% of curriculum devoted to labs)

OPPORTUNITIES
• Validate your DevSecOps knowledge and improve your eligibility for more than 13 DevSecOps job roles • The average salary of a DevSecOps engineer in the United States is USD 138,767 per year.

Career Pathways into DevSecOps Professions

Speed up the digital transformation of organizational security in on-premises and cloud environments with EC-Council’s lab-intensive E|CDE certification.

ПРЕДВАРИТЕЛНИ ИЗИСКВАНИЯ

Students should have an understanding of application security concepts.

ТЕМИ, КОИТО СЕ РАЗГЛЕЖДАТ ПО ВРЕМЕ НА ОБУЧЕНИЕТО

MODULE 01 | Understanding DevOps Culture
MODULE 02 | Introduction to DevSecOps
MODULE 03 | DevSecOps Pipeline—Plan Stage
MODULE 04 | DevSecOps Pipeline—Code Stage
MODULE 05 | DevSecOps Pipeline—Build and Test Stage
MODULE 06 | DevSecOps Pipeline—Release and Deploy Stage
MODULE 07 | DevSecOps Pipeline—Operate and Monitor Stage

Who Can Benefit From the E|CDE?

C|ASE-certified professionals
• Application security professionals
• DevOps engineers
• Software engineers and testers
• IT security professionals
• Cybersecurity engineers and analysts
• Anyone with prior knowledge of application security who wants to build their career in DevSecOps
Job Roles Aligned with the E|CDE
DevSecOps engineer
• Senior DevSecOps engineer
• Cloud DevSecOps engineer
• Azure DevSecOps engineer
• AWS DevSecOps engineer
• DevSecOps analyst
• DevSecOps specialist
• DevSecOps operations engineer
• DevSecOps systems administrator
• DevSecOps systems engineer
• DevSecOps consultant
• DevSecOps CI/CD engineer
• Infrastructure DevSecOps engineer

Course Prerequisites

Students should have an understanding of application security concepts.

ПРОДЪЛЖИТЕЛНОСТ НА ОБУЧЕНИЕТО

3 Days
Delivery Modes:
Instructor-led training (ILT), or online learning (iLearn)
Продължителността на обучението е 40 уч.ч. Провеждат се два пъти през седмицата или събота и неделя по 5 уч.ч., общо 4 седмици.

ФОРМИ НА ОБУЧЕНИЕ

Занятията се провеждат онлайн,използвайки платформата на Cisco Webex.

ТАКСА ОБУЧЕНИЕ

Такса обучение – 000 лв.

СЕРТИФИКАТ

Студентите, успешно завършили трети модул на обучение получават от EC Council академията сертификат за преминатото обучение.

VOUCHER

Студентите от EC Council академията получават ваучер в размер на 100% от цената на сертификационния изпит за CCSE.

РЕГИСТРАЦИЯ ЗА ОБУЧЕНИЕ

За записване или допълнителна информация, можете да използвате онлайн формата, да се обадите на телефони: +(359) 885 157 577; +(359) 889 957 577 или да изпратите имейл на адрес: [email protected]. Допълнително ще се свържем с Вас, с конкретен график на провеждане на занятията и официалната регистрация за обучението.

E|CDE Exam Information

Exam Title
EC-Council Certified
DevSecOps Engineer (E|CDE)
Number of Questions
100
Exam Code
312-97