DevSecOps Certified Professional Online Training

(5.0) G 4.5/5 f 4.5/5
Course Duration

72 hours

Live Project

01

Certification

Industry recognized

Training Format

Classroom workshop

images

8000+

Certified Learners

15+

Years Avg. faculty experience

40+

Happy Clients

4.5/5.0

Average class rating

ABOUT DEVSECOPS CERTIFIED PROFESSIONAL ONLINE TRAINING


These days, every company in the software industry have started pushing code faster and more frequently than ever. Which is raising the rates of vulnerabilities in our systems and products day by day too. Thanks to DevOps which makes it possible to do more with less efforts but we must integrate security into our process as soon as we can to avoid the vulnerabilities.

DevSecOps Certified Professional is especially curated to educate the approach of integrating security into the practices and emphasizes the professional use of security discipline as the principal means of safeguard to the organization and customer.

This certification course will cover a wide range of topics that include how DevSecOps provides the business value and the ability it has to enable the business and support an organizational transformation with the ultimate goal of increasing productivity, reducing risk, and optimizing cost in the organization.

After attending our "DevSecOps Certified Professional" program you will have a good understanding and practical knowledge of tools, techniques, technologies which are related to DevSecOps, and you would be able to implement DevSecOps pipeline, culture for your project or product independently.

INSTRUCTOR-LED, LIVE & INTERACTIVE SESSIONS


Duration
Project
Interview
72 - Hours
Real time scnario based Project Code
DevSecOps, Interview KIT (Q&A)

Course Price at

49,999/-



[ Fixed - No Negotiations]



DEVSECOPS CERTIFIED PROFESSIONAL ONLINE TRAINING


DevSecOps

Learn DevSecOps concepts, tools and techniques from Industry experts with a practical and hands-on approach. Designed to help professionals successfully remove barriers and achieve enterprise goals without friction.

Project

As part of this, you will execute one project based on real time scnarios end to end and step by step to visualize a real work environment in any organization.


Interview

As part of this, You would be given interview preparation kit, set to be ready for the DevSecOps seat. This kit has been crafted by 200+ years industry experience and the experiences of nearly 10000 DevOpsSchool's learners worldwide.

WHAT IS DEVSECOPS ONLINE TRAINING ?


The DevSecOps philosophy was created by security practitioners who seek to "to operate and contribute value with less friction." These practitioners operate a website which details their approach to better security, explaining that "the goal of DevSecOps is to bring individuals of all abilities to a high level of proficiency in security in a short period of time. Security is everyone's responsibility.DevSecOps is similar to DevOps in that both seek to achieve better results through greater operational focus and communication, but in this case the framework involves security principles. DevSecOps represents a mentality as promoted by a group of security practitioners. Their philosophy involves building security into applications so it's baked in rather than applied after the fact -- or worse, retro-fitted on. TechRepublic covered the DevSecOps approach earlier in 2019 in an analysis of some of their other concepts which include threat modeling, risk assessment, automation of security tasks and an emphasis on team collaboration.

BENEFITS OF DEVSECOPS ONLINE TRAINING


  • Greater speed and agility for security teams.
  • An ability to respond to change and needs rapidly.
  • Better collaboration and communication among teams.
  • More opportunities for automated builds and quality assurance testing.
  • Early identification of vulnerabilities in code.
  • Automate your security.
  • Team member assets are freed to work on high-value work.
  • Code Analysis.
  • Quick delivery
  • Change Management.
  • Compliance Monitoring.

WHO DOES THIS AFFECT ?


DevSecOps practitioners seek to work alongside developers at every step of the way, unlike traditional security approaches, which can be slow and come along too late in the deployment process. DevSecOps is primarily comprised of security experts and technological workers, but all users who run or rely upon software are affected by security principles, good or bad.

AGENDA OF THE TRAINING (DEVOPS/DEVSECOPS/SRE)Download Curriculum


  • Software Development Models/
  • Learn DevOps Concept and Process
  • Learn DevSecOps Concept and Process
  • Learn SRE Concept and Process
  • Explore the background, approach, and best practices
  • Learn how these principles improve software quality and efficiency
  • Discover the major steps required to successfully implement
  • DevOps/DevSecOps/SRE Transition to a Project
  • Understanding the Continuous Integration, Deployment & Monitoring (CI/CD/CM)
  • Implement DevOps/DevSecOps/SRE - Organization & Culture

  • Let’s Understand about Software Development Model
  • Overview of Waterfall Development Model
  • Challenges of Waterfall Development Model
  • Overview of Agile Development Model
  • Challenges of Agile Development Model
  • Requirement of New Software Development Model
  • Understanding an existing Pain and Waste in Current Software Development Model
  • What is DevOps?
    • Transition in Software development model
    • Waterfall -> Agile -> CI/CD -> DevOps -> DevSecOps
  • Understand DevOps values and principles
  • Culture and organizational considerations
  • Communication and collaboration practices
  • Improve your effectiveness and productivity
  • DevOps Automation practices and technology considerations
  • DevOps Adoption considerations in an enterprise environment
  • Challenges, risks and critical success factors
  • What is DevSecOps?
    • Let’s Understand DevSecOps Practices and Toolsets.
  • What is SRE?
    • Let’s Understand SRE Practices and Toolsets.
  • List of Tools to become Full Stack Developer/QA/SRE/DevOps/DevSecOps
  • Microservices Fundamentals
  • Microservices Patterns
    • Choreographing Services
    • Presentation components
    • Business Logic
    • Database access logic
    • Application Integration
    • Modelling Microservices
    • Integrating multiple Microservices
  • Keeping it simple
    • Avoiding Breaking Changes
    • Choosing the right protocols
    • Sync & Async
    • Dealing with legacy systems
    • Testing
  • What and When to test
  • Preparing for deployment
  • Monitoring Microservice Performance
  • Tools used for Microservices Demo using container

Ubuntu

  • Installing CentOS7 and Ubuntu
  • Accessing Servers with SSH
  • Working at the Command Line
  • Reading Files
  • Using the vi Text Editor
  • Piping and Redirection
  • Archiving Files
  • Accessing Command Line Help
  • Understanding File Permissions
  • Accessing the Root Account
  • Using Screen and Script
  • Overview of Hypervisor
  • Introduction of VirtualBox
  • Install VirtualBox and Creating CentOS7 and Ubuntu Vms

Vagrant

  • Understanding Vagrant
  • Basic Vagrant Workflow
  • Advance Vagrant Workflow
  • Working with Vagrant VMs
  • The Vagrantfile
  • Installing Nginx
  • Provisioning
  • Networking
  • Sharing and Versioning Web Site Files
  • Vagrant Share
  • Vagrant Status
  • Sharing and Versioning Nginx Config Files
  • Configuring Synced Folders
  • Introduction of AWS
  • Understanding AWS infrastructure
  • Understanding AWS Free Tier
  • IAM: Understanding IAM Concepts
  • IAM: A Walkthrough IAM
  • IAM: Demo & Lab
  • Computing:EC2: Understanding EC2 Concepts
  • Computing:EC2: A Walkthrough EC2
  • Computing:EC2: Demo & Lab
  • Storage:EBS: Understanding EBS Concepts
  • Storage:EBS: A Walkthrough EBS
  • Storage:EBS: Demo & Lab
  • Storage:S3: Understanding S3 Concepts
  • Storage:S3: A Walkthrough S3
  • Storage:S3: Demo & Lab
  • Storage:EFS: Understanding EFS Concepts
  • Storage:EFS: A Walkthrough EFS
  • Storage:EFS: Demo & Lab
  • Database:RDS: Understanding RDS MySql Concepts
  • Database:RDS: A Walkthrough RDS MySql
  • Database:RDS: Demo & Lab
  • ELB: Elastic Load Balancer Concepts
  • ELB: Elastic Load Balancer Implementation
  • ELB: Elastic Load Balancer: Demo & Lab
  • Networking:VPC: Understanding VPC Concepts
  • Networking:VPC: Understanding VPC components
  • Networking:VPC: Demo & Lab
  • What is Containerization?
  • Why Containerization?
  • How Docker is good fit for Containerization?
  • How Docker works?
  • Docker Architecture
  • Docker Installations & Configurations
  • Docker Components
  • Docker Engine
  • Docker Image
  • Docker Containers
  • Docker Registry
  • Docker Basic Workflow
  • Managing Docker Containers
  • Creating our First Image
  • Understading Docker Images
  • Creating Images using Dockerfile
  • Managing Docker Images
  • Using Docker Hub registry
  • Docker Networking
  • Docker Volumes
  • Deepdive into Docker Images
  • Deepdive into Dockerfile
  • Deepdive into Docker Containers
  • Deepdive into Docker Networks
  • Deepdive into Docker Volumes
  • Deepdive into Docker Volume
  • Deepdive into Docker CPU and RAM allocations
  • Deepdive into Docker Config
  • Docker Compose Overview
  • Install & Configure Compose
  • Understanding Docker Compose Workflow
  • Understanding Docker Compose Services
  • Writing Docker Compose Yaml file
  • Using Docker Compose Commands
  • Docker Compose with Java Stake
  • Docker Compose with Rails Stake
  • Docker Compose with PHP Stake
  • Docker Compose with Nodejs Stake
  • Overview of Jira
  • Use cases of Jira
  • Architecture of Jira
  • Installation and Configuraration of Jira in Linux
  • Installation and Configuraration of Jira in Windows
  • Jira Terminologies
  • Understanding Types of Jira Projects
  • Working with Projects
  • Working with Jira Issues
  • Adding Project Components and Versions
  • Use Subtasks to Better Manage and Structure Your Issues
  • Link Issues to Other Resources
  • Working in an Agile project
  • Working with Issues Types by Adding/Editing/Deleting
  • Working with Custom Fields by Adding/Editing/Deleting
  • Working with Screens by Adding/Editing/Deleting
  • Searching and Filtering Issues
  • Working with Workflow basic
  • Introduction of Jira Plugins and Addons.
  • Jira Integration with Github
  • Exploring Confluence benefits and resources
  • Configuring Confluence
  • Navigating the dashboard, spaces, and pages
  • Creating users and groups
  • Creating pages from templates and blueprints
  • Importing, updating, and removing content
  • Giving content feedback
  • Watching pages, spaces, and blogs
  • Managing tasks and notifications
  • Backing up and restoring a site
  • Admin tasks
    • Add/Edit/Delete new users
    • Adding group and setting permissions
    • Managing user permissions
    • Managing addons or plugins
    • Customizing confluence site
  • Installing Confluence
    • Evaluation options for Confluence
    • Supported platforms
    • Installing Confluence on Windows
    • Activating Confluence trial license
    • Finalizing Confluence Installation
  • Introduction of Git
  • Installing Git
  • Configuring Git
  • Git Concepts and Architecture
  • How Git works?
  • The Git workflow
    • Working with Files in Git
    • Adding files
    • Editing files
    • Viewing changes with diff
    • Viewing only staged changes
    • Deleting files
    • Moving and renaming files
    • Making Changes to Files
  • Undoing Changes
    • - Reset
    • - Revert
  • Amending commits
  • Ignoring Files
  • Branching and Merging using Git
  • Working with Conflict Resolution
  • Comparing commits, branches and workspace
  • Working with Remote Git repo using Github
  • Push - Pull - Fetch using Github
  • Tagging with Git
  • What is SonarQube?
  • Benefits of SonarQube?
  • Alternative of SonarQube
  • Understanding Various License of SonarQube
  • Architecture of SonarQube
  • How SonarQube works?
  • Components of SonarQube
  • SonarQube runtime requirements
  • Installing and configuring SonarQube in Linux
  • Basic Workflow in SonarQube using Command line
  • Working with Issues in SonarQube
  • Working with Rules in SonarQube
  • Working with Quality Profiles in SonarQube
  • Working with Quality Gates in SonarQube
  • Deep Dive into SonarQube Dashboard
  • Understanding Seven Axis of SonarQube Quality
  • Workflow in SonarQube with Maven Project
  • Workflow in SonarQube with Gradle Project
  • OWASP Top 10 with SonarQube

Apache HTTP

  • Introduction to web server
  • Install Apache on CentOS 7.4
  • Enable Apache to automatically start when system boot
  • Configure the firewall service
  • Where is Apache?
  • Directory structure
    • Apache directory structure
    • Configuration file
    • Create your first page
  • Virtual hosts
    • Setting up the virtual host - name based
    • Setting up the virtual host - port based
  • Using aliases and redirecting
  • Configuring an alias for a url
  • Redirects
  • Logging
    • The error log
    • The access log
    • Custom log
    • Log rotation
  • Security
    • Basic Security - Part 1
    • Basic Security - Part 2
    • Set up TLS/SSl for free
    • Basic authentication
    • Digest authentication
    • Access Control
    • .htaccess (Administrator Side)
    • .htaccess (User Side)
    • Install and Configure antivirus
    • Mitigate dos attacks - mod_evasive
  • Apache Performance and Troubleshooting
    • Apache Multi-Processing Modules (MPMs)
    • Adjusting httpd.conf - Part 1
    • Adjusting httpd.conf - Part 2
    • Troubleshoot Apache (Analyz Access Log) - Part 1
    • Troubleshoot Apache (Analyze Access Log) - Part 2
    • Use Apachetop to monitor web server traffic

Nginx

  • Overview
    • Introduction
    • About NGINX
    • NGINX vs Apache
    • Test your knowledge
  • Installation
    • Server Overview
    • Installing with a Package Manager
    • Building Nginx from Source & Adding Modules
    • Adding an NGINX Service
    • Nginx for Windows
    • Test your knowledge
  • Configuration
    • Understanding Configuration Terms
    • Creating a Virtual Host
    • Location blocks
    • Variables
    • Rewrites & Redirects
    • Try Files & Named Locations
    • Logging
    • Inheritance & Directive types
    • PHP Processing
    • Worker Processes
    • Buffers & Timeouts
    • Adding Dynamic Modules
    • Test your knowledge
  • Performance
    • Headers & Expires
    • Compressed Responses with gzip
    • FastCGI Cache
    • HTTP2
    • Server Push
  • Security
    • HTTPS (SSL)
    • Rate Limiting
    • Basic Auth
    • Hardening Nginx
    • Test your knowledge
    • Let's Encrypt - SSL Certificates
  • About InSpec
    • Orchestration, Configuration Management, Validation to Deployment
    • Automating Security Validation Using InSpec
    • Processing InSpec Results
  • Overview
    • InSpec Profile Structure
    • InSpec Controls Structure
    • InSpec Results
      • Failure
      • Pass
      • Multiple Controls
  • Environment Setup
    • Download and Install VirtualBox
    • Download and Install Vagrant
    • Clone or Download-Unzip This Course Repository
    • Setup Environments
      • Run Vagrant to install the Virtual Environment
      • Setup network in VirtualBox
    • Vagrant Credentials
    • AWS Credentials
  • Studying an InSpec profile
    • Understanding the profile structure
    • Understand a control's structure
    • Understand a describe block's structure
      • file
      • it
      • should
      • be_directory
  • Exploring the InSpec Shell
  • Enter the shell
  • Explore the file resource
  • Explore the nginx resource
  • Write the InSpec controls
  • Refactor the code to use Attributes
    • Multiple Attribute Example
  • Running baseline straight from Github/Chef Supermarket
  • Viewing and Analyzing Results
    • Syntax
    • Supported Reporters
    • Putting it all together
  • Automation Tools
  • Additional InSpec tricks
    • rspec Explicit Subject
    • looping file structure
  • Create basic profile
    • Download STIG Requirements Here
    • Example Control V-38437
    • Getting Started on the RHEL6 baseline
    • Completed RHEL6 Profile for Reference
  • Cleanup Environments
  • Understanding the Need of Kubernetes
  • Understanding Kubernetes Architecture
  • Understanding Kubernetes Concepts
  • Kubernetes and Microservices
  • Understanding Kubernetes Masters and its Component
    • kube-apiserver
    • etcd
    • kube-scheduler
    • kube-controller-manager
  • Understanding Kubernetes Nodes and its Component
    • kubelet
    • kube-proxy
    • Container Runtime
  • Understanding Kubernetes Addons
    • DNS
    • Web UI (Dashboard)
    • Container Resource Monitoring
    • Cluster-level Logging
  • Understand Kubernetes Terminology
  • Kubernetes Pod Overview
  • Kubernetes Replication Controller Overview
  • Kubernetes Deployment Overview
  • Kubernetes Service Overview
  • Understanding Kubernetes running environment options
  • Working with first Pods
  • Working with first Replication Controller
  • Working with first Deployment
  • Working with first Services
  • Introducing Helm
  • Basic working with Helm
  • Deploying Your First Terraform Configuration
    • Introduction
    • What's the Scenario?
    • Terraform Components
  • Updating Your Configuration with More Resources
    • Introduction
    • Terraform State and Update
    • What's the Scenario?
    • Data Type and Security Groups
  • Configuring Resources After Creation
    • Introduction
    • What's the Scenario?
    • Terraform Provisioners
    • Terraform Syntax
  • Adding a New Provider to Your Configuration
    • Introduction
    • What's the Scenario?
    • Terraform Providers
    • Terraform Functions
    • Intro and Variable
    • Resource Creation
    • Deployment and Terraform Console
    • Updated Deployment and Terraform Commands
  • Why Consul?
  • Modern Ops Challenges
  • An Explosion of Services
  • First Class Service Discovery
  • Distributed Failure Detection
  • Reactive Configuration via Key/Value Store
  • Multi Datacenter Aware

  • Monitoring Nodes
  • Nodes and Services
  • What We Will Set Up
  • Defining the consul-server Node
  • Launching the consul-server Node
  • Network Interfaces on consul-server
  • Exercise Consul Is Easy to Install
  • Installing Consul
  • Running the Consul Dev Agent
  • Running Consul Locally to Access the Web UI
  • Interface Web UI
  • Interface HTTP API
  • Interface DNS
  • Interface CLI RPC
  • Client vs. Cluster Address Conventions
  • Challenge Spin Up Web and LB nodes
  • Defining Web and LB Nodes
  • Running Web and LB Nodes
  • nsul Agent On Web and LB nodes
  • Remote Command Execution Across Cluster
  • Graceful Leave vs. Failure

  • Service Discovery
  • From Nodes to Services
  • Registering a Web Service
  • Service Definitions
  • Health Checking the Web Service
  • Launching NGINX
  • Consul DNS for Randomized Internal Service Load Balancing
  • HTTP API and Failing Services
  • Exercise Register Load Balancer
  • Maintenance Mode
  • Registration Methods
  • Dynamic LB Config with consul-template
  • HAProxy
  • Setup Script for HAProxy
  • Static HAProxy Config
  • Handling Failed Services
  • HAProxy Config Template
  • What Is Consul Template?
  • Installing Consul Template
  • Consul Template Dry Mode
  • Dynamically Regenerate HAProxy Config
  • Rolling Updates with Maintenance Mode
  • Other Tools Like Consul Template
  • Benefits Recap and What Next

  • Reactive Configuration via Key/Value Store Why?
  • Creating Keys and Folders in the Web UI
  • Key Value CRUD via the CLI
  • Exercise Get KV Data into HAProxy
  • Reactive, Real Time Configuration Files
  • Revolutionizing Configuration Management
  • Blocking Queries
  • Tools to Investigate

  • Health Checking
  • Intro
  • Terms Agent, Client, and Server Mode
  • Gossip and Edge Triggered Updates
  • Understanding Serf Health Status
  • Node and Service Level Check Definitions
  • Custom Node Level Health Checks of Disk, Memory, and CPU
  • Self Healing Nodes
  • Health Checking Is the Value at the Last Transition
  • Health Check Recap
  • Don't Forget to Try This Out
  • Consul Docs Overview
  • Introduction
  • Vault Concepts and Use Cases
  • Vault Comparison
  • Installing Vault
  • Installing Vault Demo
  • Starting a Dev Server
  • Basic Secret Management
  • Managing Secrets Demo

  • Working with Secrets
  • Introduction
  • Key Value Secrets Engines
  • Key Value Secrets Lifecycle Demo
  • Scenario and General Secrets Engines
  • Working with Secrets Engines
  • Key Value Secrets Engine Demo
  • Database Secrets Engine
  • MySQL Secrets Engine Demo
  • Dynamic Secrets
  • Dynamic Secrets Demo

  • Auditing Actions in Vault
  • Audit Architecture and Device Types
  • Vault Audit Commands
  • Vault Audit Scenario
  • Vault Enabling Auditing
  • Vault Audit Log Review
  • Vault Reviewing Audit Logs
  • Operating Vault Server
  • Overview
  • Vault Server Architecture
  • Storage Backend Options
  • Installation Scenario
  • Setting up the Consul Server
  • Installing the Consul Agent
  • Vault Server Configuration
  • Installing Vault Server
  • Server Operations
  • Unseal and Initialize Vault Server
  • Rotating and Updating Keys
  • Managing Root Token

  • Controlling Access in Vault
  • Overview
  • Authentication Methods
  • Enabling the Userpass Method
  • Logging in with Userpass
  • Active Directory Authentication
  • Vault Policies
  • Creating Policies
  • Configuring LDAP Authentication
  • Client Tokens
  • Response Wrapping
  • Using Response Wrapping

  • SSL & Certificates
    • How SSL works
    • Types of SSL
    • Demo with OpenSSL
    • How Certificates based auth works!

Falco

  • Securuing Containers (RASP)- Twistkock
  • Falco Components
  • Userspace program
  • Falco Configuration
  • Privilege escalation using privileged containers
  • Namespace changes using tools like setns
  • Read/Writes to well-known directories such as /etc, /usr/bin, /usr/sbin
  • Creating symlinks
  • Ownership and Mode changes
  • Unexpected network connections or socket mutations
  • Securuing Containers (RASP)- Falco
  • Spawned processes using execve
  • Falco drivers
  • Falco userspace program
  • Executing shell binaries such as sh, bash, csh, zsh, etc
  • Executing SSH binaries such as ssh, scp, sftp, etc
  • Mutating Linux coreutils executables
  • Mutating login binaries
  • Mutating shadowutil or passwd executables

Notary

  • What is CNCF Notary
  • Why CNCF Notary?
  • What is The Update Framework (TUF)?
  • Understand the Notary service architecture
  • Brief overview of TUF keys and roles
  • Architecture and components
  • Example client-server-signer interaction
  • Threat model
  • Notary server compromise
  • Notary signer compromise
  • Notary client keys and credentials compromise
  • Run a Notary service
  • Notary configuration files
  • Getting started
  • Integrations
  • Infrastructure
  • Host Map
  • Events
  • Dashboards

  • Datadog Tagging
  • Assigning Tags
  • Using Tags

  • Agent
  • Datadog Agent Usage
  • Datadog Agent Docker
  • Datadog Agent Kubernetes
  • Datadog Agent Cluster Agent
  • Datadog Agent Log Collection
  • Datadog Agent Proxy
  • Datadog Agent Versions
  • Datadog Agent Troubleshooting
  • Datadog Integrations
  • Apache
  • Tomcat
  • AWS
  • MySql

  • Datadog Metrics
  • Metrics Introduction
  • Metrics Explorer
  • Metrics Summary

  • Datadog Graphing
  • Dashboards
  • Metrics

  • Datadog Alerting
  • Monitors
  • Manage Monitors
  • Monitor Status
  • What Is Splunk?
  • Overview
  • Machine Data
  • Splunk Architecture
  • Careers in Splunk

  • Setting up the Splunk Environment
  • Overview
  • Splunk Licensing
  • Getting Splunk
  • Installing Splunk
  • Adding Data to Splunk

  • Basic Searching Techniques
  • Adding More Data
  • Search in Splunk
  • Demo: Splunk Search
  • Splunk Search Commands
  • Splunk Processing Langauge
  • Splunk Reports
  • Reporting in Splunk
  • Splunk Alerts
  • Alerts in Splunk

  • Enterprise Splunk Architecture
  • Overview
  • Forwarders
  • Enterprise Splunk Architecture
  • Installing Forwarders
  • Installing Forwarders
  • Troubleshooting Forwarder Installation
  • Splunking for DevOps and Security
  • Splunk in DevOps
  • DevOps Demo
  • Splunk in Security
  • Enterprise Use Cases

  • Application Development in Splunkbase
  • What Is Splunkbase?
  • Navigating the Splunkbase
  • Creating Apps for Splunk
  • Benefits of Building in Splunkbase
  • Splunking on Hadoop with Hunk
  • What Is Hadoop?

  • Running HDFS Commands
  • What Is Hunk?
  • Installing Hunk
  • Moving Data from HDFS to Hunk
  • Composing Advanced Searches
  • Splunk Searching

  • Introduction to Advanced Searching
  • Eval and Fillnull Commands
  • Other Splunk Command Usage
  • Filter Those Results!
  • The Search Job Inspector
  • Creating Search Macros
  • What Are Search Macros?
  • Using Search Macros within Splunk
  • Macro Command Options and Arguments
  • Other Advanced Searching within Splunk
  • Introduction to Elasticsearch
  • Overview of the Elastic Stack (ELK+)
  • Elastic Stack

  • Architecture of Elasticsearch
  • Nodes & Clusters
  • Indices & Documents
  • A word on types
  • Another word on types
  • Sharding
  • Replication
  • Keeping replicas synchronized
  • Searching for data
  • Distributing documents across shards

  • Installing Elasticsearch & Kibana
  • Running Elasticsearch & Kibana in Elastic Cloud
  • Installing Elasticsearch on Mac/Linux
  • Using the MSI installer on Windows
  • Installing Elasticsearch on Windows
  • Configuring Elasticsearch
  • Installing Kibana on Mac/Linux
  • Installing Kibana on Windows
  • Configuring Kibana
  • Kibana now requires data to be available
  • Introduction to Kibana and dev tools

  • Managing Documents
  • Creating an index
  • Adding documents
  • Retrieving documents by ID
  • Replacing documents
  • Updating documents
  • Scripted updates
  • Upserts
  • Deleting documents
  • Deleting indices
  • Batch processing
  • Importing test data with cURL
  • Exploring the cluster

  • Mapping
  • Introduction to mapping
  • Dynamic mapping
  • Meta fields
  • Field data types
  • Adding mappings to existing indices
  • Changing existing mappings
  • Mapping parameters
  • Adding multi-fields mappings
  • Defining custom date formats
  • Picking up new fields without dynamic mapping

  • Analysis & Analyzers
  • Introduction to the analysis process
  • A closer look at analyzers
  • Using the Analyze API
  • Understanding the inverted index
  • Analyzers
  • Overview of character filters
  • Overview of tokenizers
  • Overview of token filters
  • Overview of built-in analyzers
  • Configuring built-in analyzers and token filters
  • Creating custom analyzers
  • Using analyzers in mappings
  • Adding analyzers to existing indices
  • A word on stop words

  • Introduction to Searching
  • Search methods
  • Searching with the request URI
  • Introducing the Query DSL
  • Understanding query results
  • Understanding relevance scores
  • Debugging unexpected search results
  • Query contexts
  • Full text queries vs term level queries
  • Basics of searching

  • Term Level Queries
  • Introduction to term level queries
  • Searching for a term
  • Searching for multiple terms
  • Retrieving documents based on IDs
  • Matching documents with range values
  • Working with relative dates (date math)
  • Matching documents with non-null values
  • Matching based on prefixes
  • Searching with wildcards
  • Searching with regular expressions
  • Term Level Queries

  • Full Text Queries
  • Introduction to full text queries
  • Flexible matching with the match query
  • Matching phrases
  • Searching multiple fields
  • Full Text Queries

  • Adding Boolean Logic to Queries
  • Introduction to compound queries
  • Querying with boolean logic
  • Debugging bool queries with named queries
  • How the “match” query works
  • Introduction and Overview of NewRelic
  • What is Application Performance Management?
  • Understanding a need of APM
  • Understanding transaction traces
  • What is Application Performance?
  • APM Benefits
  • APM Selection Criteria
  • Why NewRelic is best for APM?
  • What is NewRelic APM?
  • How does NewRelic APM work?
  • NewRelic Architecture
  • NewRelic Terminology
  • Installing and Configuring NewRelic APM Agents for Application
  • Register a Newrelic Trial account
  • Installing a JAVA Agent to Monitor your Java Application
  • Installing a PHP Agent to Monitor your PHP Application
  • Installing New Relic Agent for .NET Framework Application
  • Installing a Docker based Agent to Monitor your Docker based Application
  • Understanding of NewRelic Configration settings of newrelic.yml
  • Understanding of NewRelic Agent Configration settings
  • Working with NewRelic Dashboard
  • Understanding a transactions
  • Understanding Apdex and Calculating and Setting Apdex Threshold
  • Understanding Circuit break
  • Understanding Throughput
  • Newrelic default graphs
  • Understanding and Configuring Service Maps
  • Understanding and Configuring JVM
  • Understanding Error Analytics
  • Understanding Violations
  • Understanding and Configuring Deployments
  • Understanding and Configuring Thread Profiler
  • Depp Dive into Transaction Traces
  • Profiling with New Relic
  • Creating and managing Alerts
  • Working with Incidents
  • Sending NewRelic Alerts to Slack
  • Assessing the quality of application deployments
  • Monitoring using Newrelic
  • View your applications index
  • APM Overview page
  • New Relic APM data in Infrastructure
  • Transactions page
  • Databases and slow queries
  • Viewing slow query details
  • External services page
  • Agent-specific UI
  • Viewing the transaction map

  • Deep Dive into Newrelic Advance
  • Newrelic transaction alerts
  • Configure abnd Troubleshoot and Cross Application Traces
  • NewRelic Service Level Agreements
  • Troubleshooting NewRelic
  • Understanding and Configuring NewRelic X-Ray Sessions
  • Deep Dive into NewRelic Agent Configuration
  • Adding Custom Data with the APM Agent
  • Extending Newrelic using Plugins
  • Finding and Fixing Application Performance Issues with New Relic APM
  • Setting up database montioring using Newrelic APM
  • Setting up and Configuring Newrelic Alerts

  • Working with NewRelic Performance Reports
  • Availability report
  • Background jobs analysis report
  • Capacity analysis report
  • Database analysis report
  • Host usage report
  • Scalability analysis report
  • Web transactions analysis report
  • Weekly performance report
  • Videos Only
  • Module 1 Getting Started with ES
  • Provide an overview of Splunk for Enterprise Security (ES)
  • Identify the differences between traditional security threats and new adaptive threats
  • Describe correlation searches, data models and notable events
  • Describe user roles in ES
  • Log on to ES

  • Module 2 Security Monitoring and Incident Investigation
  • Use the Security Posture dashboard to monitor enterprise security status
  • Use the Incident Review dashboard to investigate notable events
  • Take ownership of an incident and move it through the investigation workflow
  • Use adaptive response actions during incident investigation
  • Create notable events
  • Suppress notable events

  • Module 3 – Investigations
  • Use ES investigation timelines to manage, visualize and coordinate incident investigations
  • Use timelines and journals to document breach analysis and mitigation efforts

  • Module 4 – Forensic Investigation with ES
  • nvestigate access domain events
  • Investigate endpoint domain events
  • Investigate network domain events
  • Investigate identity domain events

  • Module 5 – Risk and Network Analysis
  • Understand and use Risk Analysis
  • Use the Risk Analysis dashboard
  • Manage risk scores for objects or users
  • Module 6 – Web Intelligence
  • Use HTTP Category Analysis, HTTP User Agent Analysis, New Domain Analysis, and Traffic Size Analysis to spot new threats
  • Filter and highlight events

  • Module 7 – User Intelligence
  • Evaluate the level of insider threat with the user activity and access anomaly dashboards
  • Understand asset and identity concepts
  • Use the Asset Investigator to analyze events
  • Use the Identity Investigator to analyze events
  • Use the session center for identity resolution (UBA integration)

  • Module 8 – Threat Intelligence
  • Use the Threat Activity dashboard to analyze traffic to or from known malicious sites
  • Inspect> the status of your threat intelligence content with the threat artifact dashboard

  • Module 9 Protocol Intelligence
  • Describe Stream events data is input into Splunk events
  • Use ES predictive analytics to make forecasts and view trends

  • Module 10 – Glass Tables
  • Build glass tables to display security status information
  • Add glass table drilldown options
  • Create new key indicators for metrics on glass tables
  • SIEM Introduction
  • SIEM Components
  • Setup and Configure ELK
  • Understanding a types of Threats
  • Introduction to threat hunting on an endpoint platform
  • Hunt types
  • Install Beats shippers
    • Filebeat for forwarding and centralizing logs and files
    • Auditbeat for collecting security events
    • Winlogbeat for centralizing Windows event logs
    • Packetbeat for analyzing network packets
  • Data Source in ELK for Security Scanning
  • Enable modules and configuration options
    • Auditbeat & Discover Anomaly detection
    • System module - Linux, macOS, Win
    • packages
    • processes
    • logins
    • sockets
    • users and groups
    • Auditd module (Linux Kernel Audit info)
    • File integrity module (FIM) - Linux, macOS, Win
  • Filebeat & Discover Anomaly detection
    • - system logs (auth logs) - Linux
    • - Santa - macOS
  • Winlogbeat & Discover Anomaly detection
    • - Windows event logs - Windows
  • Packetbeat & Discover Anomaly detection
    • - Flows
    • - DNS
    • - other protocols
  • Filebeat & Discover Anomaly detection
    • - Zeek NMS module
    • - Suricata IDS module
    • - Iptables/Ubiquiti module
    • - CoreDNS module
    • - Envoy proxy module (Kubernetes)
    • - Palo Alto Networks firewall module
    • - Cisco ASA firewall module
  • Understanding SIEM UI
    • Timelines
    • Hosts
    • Network
    • Raw Event Data
  • Threat Hunting with Kibana
    • Introduction to the threat hunting and the Elastic Stack
    • Network data
    • Host data
    • Data enrichment
    • Threat hunting
    • Guided Hunt
  • Elastic Endpoint Security Triage and Response
    • Triage and tune
    • Alert management
    • Detection and response
    • Hunting malicious activity
    • Advanced tradecraft analytics
  • Identity & access management
  • AWS Identity & Access Management (IAM)
  • AWS Single Sign-On
  • Amazon Cognito
  • AWS Directory Service
  • AWS Resource Access Manager
  • AWS Organizations
  • Detection
  • AWS Security Hub
  • Amazon GuardDuty
  • Amazon Inspector
  • AWS Config
  • AWS CloudTrail
  • AWS IoT Device Defender
  • Infrastructure protection
  • AWS Shield
  • AWS Web Application Firewall (WAF)
  • AWS Firewall Manager
PROJECT

As part of this project work, you would be given and execute one project based on real time scnarios end to end and step by step to visualize a real work environment in any organization.

INTERVIEW

As part of this, You would be given interview preparation kit, set to be ready for the DevSecOps seat. This kit has been crafted by 200+ years industry experience and the experiences of nearly 10000 DevOpsSchool's learners worldwide.

OUR COURSE IN COMPARISON

FEATURES DEVOPSSCHOOL OTHERS
Lifetime Technical Support
Lifetime LMS access
Top 30 Tools
Interview KIT (Q&A)
Training Notes
Step by Step Web Based Tutorials
Training Slides
Training + Additional Videos
  • DevOps changes the landscape completely and we can observe it by this example: if you will see today in the job descriptions, you look at the developers today there is no Java developer there is no DOTNET developers there are full stack developers. All of them are powered by tools, everybody wants to release faster, everybody want to be more secure and therefore, if you don’t know how to combine your skills and role with the power of tools and automation which is DevOps, you will fall behind.
  • As DevOps at its core is a cultural shift from traditional way of working to a new approach of working together which allows building, testing, and deploying software rapidly, frequently, and reliably. This approach no doubt helps organization and enterprises to achieve their goals quicker and faster turnaround time to deploy the new features, security issues, and bug fixes.
  • But, it affects the entire work process and this change cannot be possible to implement overnight. DevOps shift asked for automation at several stages which helps in achieving Continuous Development, Continuous Integration, Continuous Testing, Continuous Deployment, Continuous Monitoring, Virtualization and Containerization to provide a quality product to the end user at a very fast pace. This requires careful and gradual implementation so as to not make a mess of the functioning of the organization
  • DevOps implementation requires peoples who can understand the organization current scenarios and helps them to implement this shift accordingly. There is no single tool or magic pill that can fix existing issues in organizations and achieve the purpose of DevOps to work on collaboration. Therefore a software engineer nowadays must possess the DevOps skills and mindset and required various tools knowledge and they should have that sound knowledge to understand where to use these tools accordingly to automate the complete process
  • Our DevOps Certified Professional (DCP) training course is designed to make you a certified DevOps practitioner by providing you hands-on, lab based training which covers the best practices about Continuous Development, Continuous Testing, Configuration Management, including Continuous Integration, Continuous Deployment, Continuous Monitoring of the software project throughout its complete life cycle.
  • Our DevOps curriculum covers all the content based on the market-research and as per the relevant industries demands in a certain way where each participant can get benefits with more content in short duration of time
  • We have top-notch industry experts as our DevOps instructors, mentors and coaches with at least 10-12 years of experience.
  • We will make sure to be taught by the best trainers and faculties in all classroom public batches and workshops available in Bangalore/Bengaluru.
  • We provide our each participant one real-time scenario based project and assignments to work on where they can implement their learnings after training. This project helps them to understand real-time work scenarios, challenges and how to overcome them easily.
  • We have the only DevOps course in the industry where one can learn top 16 trending tools of DevOps
  • We are working in the training and consulting domain from last 4 years and based on our experience we know that one size does not fit to all which means we know that our pre-decided agenda sometimes cannot work for you. In that scenario you can discuss with our subject matter experts to create training solutions that will address your or your team specific requirements
  • After training each participant will be awarded with industry-recognized DevOps Certified Professional (DCP) certification from DevOpschool with association of DevOpsCertication.co which has a lifelong validity.
  • There are no prerequisites for DevSecOps Program. As we are going to start all the concepts from scratch. Even, if any aspirant is planning to enter the IT world or DevOps this course will help them to get all the job-ready skills.
DEVSECOPS CERTIFICATION

What are the benefits of DevSecOps Certified Professional (DCP) certifications?

Certifications always play an important role in any profession. It is considered as one of the best way to determine one’s credibility and worth in the professional career. The same thing is applicable in DevOps, if you are a certified DevOps professional then you will get certain benefits:

  • DevSecOps Certified Professional (DCP) certification assure recruiters that the DevOps professional whom we are going to hire have the skills, knowledge, and competency to perform the responsibilities what expected from them after hiring.
  • DevOps as a technology is dominating the job market. DevOps engineer ranks #2 on Glassdoor's best jobs rankings. The role of DevOps certified professional has seen a 200% jump in postings on indeed" according to SD times report
  • This certified course helps anyone who aspires to make a career as a DevOps professional.
  • DevOps Certified Engineer is one of the most highly paid job roles in the world. Pay scale even for junior level DevOps practitioner is quite high.
  • According to indeed and other job portals, 80% of the companies pay more than $90000 starting salary to a DevOps Certified Professionals. Also, 35% pay at least $115000 and 17% more than $125000
  • Obviously there are several factors which affects salary for like geography, skills, company, it varies accordingly. In Cities like Bangalore/Hyderabad DevOps Certified Professional can expect - INR 3,25,672 - 19,42,394 which is not at all a bad package.
  • DevOps is going to stay here for long time. Therefore organizations and as well as professionals need to change as they have no choice but to evolve. If they will evolve then then demands of certified professionals will definitely increase and the sooner you do it, the sooner you will be in a leading position.

View more

FREQUENTLY ASKED QUESTIONS

To maintain the quality of our live sessions, we allow limited number of participants. Therefore, unfortunately live session demo cannot be possible without enrollment confirmation. But if you want to get familiar with our training methodology and process or trainer's teaching style, you can request a pre recorded Training videos before attending a live class.

Yes, after the training completion, participant will get one real-time scenario based project where they can impletement all their learnings and acquire real-world industry setup, skills, and practical knowledge which will help them to become industry-ready.

All our trainers, instructors and faculty members are highly qualified professionals from the Industry and have at least 10-15 yrs of relevant experience in various domains like IT, Agile, SCM, B&R, DevOps Training, Consulting and mentoring. All of them has gone through our selection process which includes profile screening, technical evaluation, and a training demo before they onboard to led our sessions.

No. But we help you to get prepared for the interviews and resume preparation as well. As there is a big demand for DevOps professionals, we help our participants to get ready for it by working on a real life projects and providing notifications through our "JOB updates" page and "Forum updates" where we update JOB requirements which we receive through emails/calls from different-different companies who are looking to hire trained professionals.

The system requirements include Windows / Mac / Linux PC, Minimum 2GB RAM and 20 GB HDD Storage with Windows/CentOS/Redhat/Ubuntu/Fedora.

All the Demo/Hands-on are to be executed by our trainers on DevOpsSchool's AWS cloud. We will provide you the step-wise guide to set up the LAB which will be used for doing the hands-on exercises, assignments, etc. Participants can practice by setting up the instances in AWS FREE tier account or they can use Virtual Machines (VMs) for practicals.

  • Google Pay/Phone pe/Paytm
  • NEFT or IMPS from all leading Banks
  • Debit card/Credit card
  • Xoom and Paypal (For USD Payments)
  • Through our website payment gateway

Please email to contact@DevopsSchool.com

You will never lose any lecture at DevOpsSchool. There are two options available: You can view the class presentation, notes and class recordings that are available for online viewing 24x7 through our Learning management system (LMS). You can attend the missed session, in any other live batch or in the next batch within 3 months. Please note that, access to the learning materials (including class recordings, presentations, notes, step-bystep-guide etc.)will be available to our participants for lifetime.

Yes, Classroom training is available in Bangalore, Hyderabad, Chennai and Delhi location. Apart from these cities classroom session can be possible if the number of participants are 6 plus in that specific city.

Location of the training depends on the cities. You can refer this page for locations:- Contact

We use GoToMeeting platform to conduct our virtual sessions.

DevOpsSchool provides "DevOps Certified Professional (DCP)" certificte accredited by DevOpsCertificaiton.co which is industry recognized and does holds high value. Particiapant will be awarded with the certificate on the basis of projects, assignments and evaluation test which they will get within and after the training duration.

If you do not want to continue attend the session in that case we can not refund your money back. But, if you want to discontinue because of some genuine reason and wants to join back after some time then talk to our representative or drop an email for assistance.

Our fees are very competitive. Having said that if the participants are in a group then following discounts can be possible based on the discussion with representative
Two to Three students – 10% Flat discount
Four to Six Student – 15% Flat discount
Seven & More – 25% Flat Discount

If you are reaching to us that means you have a genuine need of this training, but if you feel that the training does not fit to your expectation level, You may share your feedback with trainer and try to resolve the concern. We have no refund policy once the training is confirmed.

You can know more about us on Web, Twitter, Facebook and linkedin and take your own decision. Also, you can email us to know more about us. We will call you back and help you more about the trusting DevOpsSchool for your online training.

If the transaction occurs through the website payment gateway, the participant will receive an invoice via email automatically. In rest options, participant can drop an email or contact to our representative for invoice

DevSecOps ONLINE TRAINING REVIEWS

Avatar

Abhinav Gupta, Pune

(5.0)

The training was very useful and interactive. Rajesh helped develop the confidence of all.


Avatar

Indrayani, India

(5.0)

Rajesh is very good trainer. Rajesh was able to resolve our queries and question effectively. We really liked the hands-on examples covered during this training program.


Avatar

Ravi Daur , Noida

(5.0)

Good training session about basic Devops concepts. Working session were also good, howeverproper query resolution was sometimes missed, maybe due to time constraint.


Avatar

Sumit Kulkarni, Software Engineer

(5.0)

Very well organized training, helped a lot to understand the DevOps concept and detailed related to various tools.Very helpful


Avatar

Vinayakumar, Project Manager, Bangalore

(5.0)

Thanks Rajesh, Training was good, Appreciate the knowledge you poses and displayed in the training.



Avatar

Abhinav Gupta, Pune

(5.0)

The training with DevOpsSchool was a good experience. Rajesh was very helping and clear with concepts. The only suggestion is to improve the course content.


View more

4.1
Google Ratings
4.1
Videos Reviews
4.1
Facebook Ratings
RELATED COURSE

RELATED BLOGS

OUR GALLERY