Become a Certified DevSecOps Essentials D|SE

EC-Council DevSecOps Essentials D|SE

Course Overview

The DevSecOps Essentials program will provide you with the foundation knowledge and essential aspects of secure application development, or DevSecOps. In this course, you will gather key insights into identifying application development risk and securing and testing applications within on-premises, cloud providers, and hybrid infrastructures. Put your newly acquired abilities to the test in an exhilarating Capstone project to develop the hands-on proficiencies essential for success in your cyber professional role. After completing this program, you will be prepared to move toward a career in secure application development.

EC-Council DevSecOps Essentials Program Information

Why EC-Council’s Essentials Series is the Most Popular and Fastest Growing Beginner Level Training Program for Career Starters and Career Changers

213,000+

Learners
Trust EC-Council’s
Essentials Series

150+

Countries

85+

Million Minutes
Watched

4.95/5.0

Average
Ratings

96.46%

of Learners
Gave a 5* Rating

EC-Council DevSecOps Essentials
Course Outline

Module 1: Introduction to Application Development

Topics covered:
• History of Application Development
• Evolution of Application Development Methodologies
• Introduction to Application Architectures
• Introduction to the Application Development Lifecycle

Module 2: Application Development Concepts

Topics covered:
• Role of Risk Management in Secure Development
• Project Management Role in Application Development
• Application Testing and Quality Assurance
• Application Monitoring, Maintenance, and Support

Module 3: Application Security Fundamentals

Topics covered:
• What is Secure Application Development
• Need for Application Security
• Common Application Security Risks and Threats
• OWASP Top 10
• Application Security Techniques
• Secure Design Principles

Module 4: Introduction to Application Security Testing and Configuration

Topics covered:
• Threat Modeling
• Secure Coding
• Secure Code Review
• SAST and DAST Testing
• Secure Configurations
• Educating Developers

Module 5: Introduction to DevOps

Topics covered:
• Introduction to DevOps
• DevOps Principles
• DevOps Pipelines
• DevOps and Project Management

Module 6: Introduction to DevSecOps

Topics covered:
• Understanding DevSecOps
• DevOps vs. DevSecOps
• DevSecOps Principles
• DevSecOps Culture
• Shift-Left Security
• DevSecOps Pipelines
• Pillars of DevSecOps
• DevSecOps Benefits and Challenges

Module 7: Introduction to DevSecOps Management Tools

Topics covered:
• Project Management Tools
• Integrated Development Environment (IDE) Tools
• Source-Code Management Tools
• Build Tools
• Continuous Testing Tools

Module 8: Introduction to DevSecOps Code and CI/CD Tools

Topics covered:
• Continuous Integration Tools
• Infrastructure as Code Tools
• Configuration Management Tools
• Continuous Monitoring Tools

Module 9: Introduction to DevSecOps Pipelines

Topics covered:
• Role of DevSecOps in the CI/CD Pipeline
• DevSecOps Tools
• Embracing the DevSecOps Lifecycle
• DevSecOps Ecosystem
• Key Elements of the DevSecOps Pipeline
• Integrating Security into the DevOps Pipeline

Module 10: Introduction to DevSecOps CI/CD Testing and Assessments

Topics covered:
• Implementing Security into the CI/CD Pipeline and Security Controls
• Continuous Security in DevSecOps with Security as Code
• Continuous Application Testing for CI/CD Pipeline Security
• Application Assessments and Penetration Testing

Module 11: Implementing DevSecOps Testing & Threat Modeling

Topics covered:
• Integrating Security Threat Modeling in Plan Stage
• Integrating Secure Coding in the Code Stage
• Integrating SAST, DAST, and IAST in the Build and Test Stage
• Integrating RASP and VAPT in the Release and Deploy Stage

Module 12: Implementing DevSecOps Monitoring and Feedback

Topics covered:
• Integrating Infrastructure as Code (IaC)
• Integrating Configuration Orchestration
• Integrating security in the Operate and Monitor Stage
• Integrating Compliance as Code (CaC)
• Integrating Logging, Monitoring, and Alerting
• Integrating Continuous Feedback Loop