Let's Talk
Back

About Cprime Cprime, a Goldman Sachs and Everstone Capital portfolio company, is more than just a full-service consulting firm – we are your strategic partner for driving innovation and agility in your business. With over two decades of experience, we have honed our expertise to help organizations adapt at the speed the market demands.

Back

Training From new ways of working to deeply technical tools-based topics, leverage 30 years of experience to bridge skills gaps, empower excellence, and foster innovation for unmatched growth.

Back Enterprise Agility Development Business Technology Training Global Talent
Back

Enterprise Agility Need to respond to change faster? To do more with less? To surpass your competition? Adopting a holistic approach to change and continuous improvement across the organization can achieve all that and more Learn more >

Back

Global TalentElevate your pool of talent to beat the global tech talent shortage and remain competitive in the marketplace with end-to-end solutions for enhancing your tech teams Learn more >

Back

Development Support lean, cost-effective workflows focused on delivering value to your customer by leveraging individual specialists or entire teams of experienced software engineers to build custom applications and integrations Learn more >

Back

Business Technology Establish the optimal tool stacks to streamline workflows, data capture, and transparency across the organization, supporting decision making and agility Learn more >

Back

Training From new ways of working to deeply technical tools-based topics, leverage 30 years of experience to bridge skills gaps, empower excellence, and foster innovation for unmatched growth. Cprime Learning >

Pages

Courses

ALL COURSES

Resources

ALL RESOURCES

Blogs

ALL BLOGS

Courses

ALL COURSES

Certifications

ALL CERTIFICATIONS

Instructors

ALL INSTRUCTORS

Deploying Hardened Infrastructure at Scale | DevSecOps Course Builder

No one needs to tell you the damage a security breach can cause to your business.  The way to shield your business from the financial losses, damaged customer trust, and devastation to your reputation caused by a security breach is to protect your code, your infrastructure, and your networks before attackers can infiltrate your systems, and then to detect if this infiltration has happened (despite your best efforts) before it affects your customers.

DevSecOps is the art and science of moving your attention earlier in the application-building process (Shift Left) to catch known vulnerabilities before they can disrupt your business or your development process. This will lower development costs and reduce application delivery time to your stakeholders – meaning you’ll consistently achieve a faster and safer time to market.

A DevOps pipeline automates code testing for correct functionality before deploying that code to environments such as Testing, Staging, or Production. A DevOps pipeline is a must for application deployment. DevSecOps takes that further by implementing Security Scans throughout the entire DevOps Pipeline, hence the name DevSecOps pipeline

This course teaches exactly how to implement a DevSecOps pipeline, catching known vulnerabilities both during code development and deployment, as well as while the application is actively running.  Students will learn how to use the industry-accepted tools and processes (at a hands-on technical level) that are required to create and use an end-to-end CI/CD pipeline that ensures only listed, tested, validated, vulnerability-free, and approved code (including relied-upon libraries) gets deployed into Production, automatically.

Course Agenda 

  • Cloud Networking. You will learn a solid introduction to Cloud networking on AWS, GCE, or Azure Cloud so you can confidently know your IGW from your RTA without embarrassing your VPC, as well as how to use the cloud CLI tools
  • Infrastructure Deployment. You will learn how to use “infrastructure as code” tools like HashiCorp’s Terraform to describe and deploy VM’s in the cloud of your choice.   We’ll use infrastructure as code to create and destroy secure networking components automatically, as well as how to launch VM’s within those networking components
  • Containerization. We’ll teach you how to create Docker containers to deploy your applications.
  • Container Orchestration.  Once you have containers running, either Kubernetes or OpenShift can be used to manage containers, automatically replace damaged containers, and scale containers to meet customer demand on your applications.

Choose the exact toolchain you want below and generate a course outline, or choose the ‘generic’ options for a tool-neutral outline:

Need Help?

Contact our training experts