DevSecOps

Shift security left into the SDLC, automate the gates at every stage, and treat security as a property of every commit. Threat modeling, SAST/SCA, container and supply-chain security (SLSA, SBOM, cosign), IaC scanning, runtime detection (RHACS, Falco), secrets, zero trust, compliance, and SIEM — ending in a fully gated deployment pipeline.

13 modules · ~13h total reading time

Start the track →
Show all modules 13
00 — Overview
01 — Foundations
02 — Threat modeling
03 — Source-code security
04 — Container security
05 — Supply-chain security
06 — IaC security
07 — Runtime security
08 — Secrets management
09 — Identity + zero trust
10 — Compliance + audit
11 — Security obs + SIEM
12 — Capstone