Time
4 hours 39 minutes
Difficulty
Beginner
CEU/CPE
5

Video Transcription

00:00
So I've reached the end of this first module. This is less than one point for and it's just gonna get where the summarize what we've learned so far in the course.
00:11
So we talked a lot about maturity. Plan to integrate def SEC ops all keep that
00:16
that idea through the whole course. And just later on, as we get to the AWAS maturity model,
00:23
add a little more concrete thoughts to it.
00:26
Um, tough for the major steps of the def SEC ops pipeline pipeline on Lee, from development to the static analysis all the way to operations again, we'll keep that theme going, and each one of the modules is laid out it for each one of those major steps.
00:40
He talked about the challenges not just from the developer side, but for the auditor is the operations. And each one has to understand
00:48
the other groups
00:50
problems. Oh, our challenges that they have to overcome. But you really need again this this champion at this at the top executive level, to say to the organization, This is what we're doing. Everybody get in line.
01:03
And we talked a little bit about Turning Dev ops into def. SEC ops and specifically looking at the using the columns framework, which is specific to Dev ops. But we can use that to see Is your organization ready
01:15
to automate the security portion and integrate into your debit dev ops lifecycle
01:23
and kind of showed that that def sec ups pillars from the duty enterprise reference model just to again get you thinking about Let me look down each one of these pillars and say,
01:34
Do I have this? And with within my organization, or can I Is this something that's gonna be easy to do and what I need to find out what I need to put in place in order to meet some of these major pillars
01:47
does have a final quiz just to wrap up the module. So which answer is not a component of the com's framework?
01:53
Is it
01:53
Continuity,
01:56
automation,
01:57
Lean
01:59
measurement, or sherry?
02:00
Which one of the the acronyms is not correct here,
02:05
though the sea and calmed his culture, the Lord's Ace much shift their culture to integrate security into the Dev Ops pipeline? It continuity is probably a good idea, but it's it's culture is the most important part

Up Next

DevSecOps Fundamentals

DevSecOps training helps students learn to incorporate security features in every step of the development process and navigate distinct security challenges in custom software and web applications.

Instructed By

Instructor Profile Image
Philip Kulp
Instructor