Upcoming events

    • 20 Sep 2021
    • 22 Sep 2021
    • 3 sessions
    • Virtual

    Your (ISC)2 South Florida Chapter is partnering with Network Intelligence, to offer this DevSecOps training:

    COURSE OBJECTIVE:

    This training focuses on Embedding security into the DevOps processes is referred to as DevSecOps While DevOps addresses the business need of rapidly delivering products and release code in order to satisfy customer demands, it is important that security must work in tandem with Agile and DevOps processes

    In traditional development methods, security is kept at the very end of the release process

    Hence, security has been viewed as a bottleneck to the rapid development methodologies such as Agile along with the software delivery pipeline

    This results in a major contention and distrust between development and security teams unless they work in tandem

    Just as DevOps addresses the traditional silos between Development and Operations, DevSecOps seeks to address the silos between Dev, Ops and Security teams Automated application security further facilitates reducing friction and removing bottlenecks in the CI/CD cycle

    In this course, we will be learning how DevSecOps is implemented in a company by using various programming languages and open source tools It will be helpful to jumpstart in understanding and exposure to various security automation possibilities which can be integrated in DevOps related to application or infrastructure security

    COURSE CONTENT

    Day 1:

    • Intro DevOps Culture

    •DevOps Principles

    •Overview of DevOps Tools

    •DevOps CI/CD Pipelining

    •Security & Compliance Challenges in DevOps

    •Cloud Service threats

    •Rapid releases

    •New Technology (Microservices)

    •Security challenges in CI/CD

    •Case Study

    •Injecting Security into CI/CD

    •Hands on Open Source Tools

    •Static Analaysis

    •Dynamic Analysis

    •Security Testing

    •Git Attack & Best Pratice

    •Jenkins Attack & Best Practice

    •Case Study

    •Shift Secure Left

    •OWASP Proactive Controls

    •Using Infrastructure as Code

    •The ‘ HoneyMoon ’ Effect

    •SDOMM or DSOMM(Maturity Model)

    Day 2:

    •Microservice Security

    •What is Docker?

    •Overview of Docker Components

    •Security Concerns with Containers

    •Attacking Docker Containers Misconfiguration(Hands on)

    •Auditing Docker Containers(Hands on)

    •Kubernetes Attacking and Defending

    Day 3:

    •Security Automation

    •CaseStudy

    •Security Policy

    •Framework( BDD,Robot

    •Introduction to Ansible

    •Hands on Security Automation

    •Security Automation Compliance

    •Hands on Inspec

    •Intro to Cloud DevSecOps

    •Serverless Security

    Examination: Participants need to pass an on-line examination after the training to be awarded with the DevOPs Security Practitioner certificate

    Past events

    14 Sep 2021 Exclusive Free Admission to Region’s Official Virtual Cyber Security Summit featuring The NSA
    16 Aug 2021 Certified Web Application Security Professional (CWASP) Training
    19 Jul 2021 Certified Professional Forensics Analyst (CPFA) Training
    16 Jun 2021 Florida & Caribbean Virtual CyberSecurity Summit
    24 May 2021 Certified Payment Security Practitioner(CPSP)
    12 May 2021 Careers in Cybersecurity - Certifications
    28 Apr 2021 Careers in Cybersecurity - Continuation
    19 Apr 2021 Certified Web Application Security Professional (CWASP) Training
    10 Mar 2021 Careers in Cybersecurity - Continuation
    24 Feb 2021 McAfee & AWS Virtual Lab - For (ISC)2 Miami members only!!
    15 Feb 2021 Certified Professional Forensics Analyst (CPFA) Training
    10 Feb 2021 Careers in Cybersecurity
    18 Jan 2021 Certified Data Privacy Practitioner (CDPP) Training
    14 Dec 2020 Certified Web Application Security Professional (CWASP) Training
    9 Nov 2020 Cyber Royale – Our Roulette is Red and Blue (COVID Edition)
    2 Nov 2020 Certified Data Privacy Practitioner (CDPP) Training
    1 Oct 2020 Cyber Security Incidents; Brief Impact Analysis
    21 Sep 2020 Certified Payment Security Practitioner (CPSP) Training
    26 Aug 2020 Email Security Architecture
    10 Aug 2020 Certified Data Privacy Practitioner (CDPP) Training
    29 Jul 2020 Server and Network Hardening
    11 Jun 2020 Security Awareness Training Virtual Escape Room
    27 May 2020 ISC2 Miami CyberSecurity Lightning Labs - Part 1
    29 Apr 2020 AWS Security Basics for Cybersecurity Audits
    14 Mar 2020 Women in Cybersecurity - Bridging the Gap
    29 Jan 2020 (ISC)2 Miami - Happy hour & Networking
    11 Dec 2019 (ISC)2 Miami – Member’s appreciation – Happy Hour
    16 Nov 2019 Lightning Talks | Careers in Cyber Security - Niche Specialties in Cyber Security
    19 Oct 2019 IT Security Incident Management & Tools
    7 Sep 2019 Lightning Talks
    11 May 2019 Networking Session with IT Recruiters

      © 2021 (ISC)2 South Florida  Chapter

        Powered by Wild Apricot Membership Software