Master in DevOps Engineering (MDE)
- Including DevSecOps and SRE

(5.0) G 4.5/5 f 4.5/5
Course Duration

120 hours

Live Project

03

Certification

Industry recognized

Training Format

Online/Classroom/Corporate

images

8000+

Certified Learners

15+

Years Avg. faculty experience

40+

Happy Clients

4.5/5.0

Average class rating

ABOUT MASTER IN DEVOPS ENGINEER (MDE)TRAINING


This "Masters in DevOps Engineering (MDE)" Program is the only course in the WORLD which can make you an expert and proficient Architect in DevOps, DevSecOps and Site Reliability Engineering (SRE) principles together. Our curriculum has been determined by comprehensive research on 10000+ job descriptions across the globe and epitome of 200+ years of industry experience.
"Master in DevOps Engineering" program is structured in a way, whether you are an experienced IT professional or a college graduate, this course will help you to integrate all the real-world experience with all the important tools, specialization and job-ready skills.

Instructor-led, Live & Interactive Sessions


DURATION
MODE
PRICE
ENROLL NOW
120 Hrs (Approx)
Self learning using Video

49,999/-

120 Hrs (Approx)
Live & Interactive in Online Batch

99,999/-

120 Hrs (Approx)
One to One Live & Interactive in Online

1,49,999/-

2 - 3 Days (Approx)
Corporate (Online/Classroom)
Contact US
Calendar

Agenda of the Training (DevOps/DevSecOps/SRE) Download Curriculum


  • Software Development Models
  • Learn DevOps Concept and Process
  • Learn DevSecOps Concept and Process
  • Learn SRE Concept and Process
  • Explore the background, approach, and best practices
  • Learn how these principles improve software quality and efficiency
  • Discover the major steps required to successfully implement
  • DevOps/DevSecOps/SRE Transition to a Project
  • Understanding the Continuous Integration, Deployment & Monitoring (CI/CD/CM)
  • Implement DevOps/DevSecOps/SRE - Organization & Culture
  • Let’s Understand about Software Development Model
  • Overview of Waterfall Development Model
  • Challenges of Waterfall Development Model
  • Overview of Agile Development Model
  • Challenges of Agile Development Model
  • Requirement of New Software Development Model
  • Understanding an existing Pain and Waste in Current Software Development Model
  • What is DevOps?
    • Transition in Software development model
    • Waterfall -> Agile -> CI/CD -> DevOps -> DevSecOps
  • Understand DevOps values and principles
  • Culture and organizational considerations
  • Communication and collaboration practices
  • Improve your effectiveness and productivity
  • DevOps Automation practices and technology considerations
  • DevOps Adoption considerations in an enterprise environment
  • Challenges, risks and critical success factors
  • What is DevSecOps?
    • Let’s Understand DevSecOps Practices and Toolsets.
  • What is SRE?
    • Let’s Understand SRE Practices and Toolsets.
  • List of Tools to become Full Stack Developer/QA/SRE/DevOps/DevSecOps
  • Microservices Fundamentals
  • Microservices Patterns
    • Choreographing Services
    • Presentation components
    • Business Logic
    • Database access logic
    • Application Integration
    • Modelling Microservices
    • Integrating multiple Microservices
  • Keeping it simple
    • Avoiding Breaking Changes
    • Choosing the right protocols
    • Sync & Async
    • Dealing with legacy systems
    • Testing
  • What and When to test
  • Preparing for deployment
  • Monitoring Microservice Performance
  • Tools used for Microservices Demo using container

Ubuntu

  • Installing CentOS7 and Ubuntu
  • Accessing Servers with SSH
  • Working at the Command Line
  • Reading Files
  • Using the vi Text Editor
  • Piping and Redirection
  • Archiving Files
  • Accessing Command Line Help
  • Understanding File Permissions
  • Accessing the Root Account
  • Using Screen and Script
  • Overview of Hypervisor
  • Introduction of VirtualBox
  • Install VirtualBox and Creating CentOS7 and Ubuntu Vms

Vagrant

  • Understanding Vagrant
  • Basic Vagrant Workflow
  • Advance Vagrant Workflow
  • Working with Vagrant VMs
  • The Vagrantfile
  • Installing Nginx
  • Provisioning
  • Networking
  • Sharing and Versioning Web Site Files
  • Vagrant Share
  • Vagrant Status
  • Sharing and Versioning Nginx Config Files
  • Configuring Synced Folders
  • Introduction of AWS
  • Understanding AWS infrastructure
  • Understanding AWS Free Tier
  • IAM: Understanding IAM Concepts
  • IAM: A Walkthrough IAM
  • IAM: Demo & Lab
  • Computing:EC2: Understanding EC2 Concepts
  • Computing:EC2: A Walkthrough EC2
  • Computing:EC2: Demo & Lab
  • Storage:EBS: Understanding EBS Concepts
  • Storage:EBS: A Walkthrough EBS
  • Storage:EBS: Demo & Lab
  • Storage:S3: Understanding S3 Concepts
  • Storage:S3: A Walkthrough S3
  • Storage:S3: Demo & Lab
  • Storage:EFS: Understanding EFS Concepts
  • Storage:EFS: A Walkthrough EFS
  • Storage:EFS: Demo & Lab
  • Database:RDS: Understanding RDS MySql Concepts
  • Database:RDS: A Walkthrough RDS MySql
  • Database:RDS: Demo & Lab
  • ELB: Elastic Load Balancer Concepts
  • ELB: Elastic Load Balancer Implementation
  • ELB: Elastic Load Balancer: Demo & Lab
  • Networking:VPC: Understanding VPC Concepts
  • Networking:VPC: Understanding VPC components
  • Networking:VPC: Demo & Lab
  • What is Containerization?
  • Why Containerization?
  • How Docker is good fit for Containerization?
  • How Docker works?
  • Docker Architecture
  • Docker Installations & Configurations
  • Docker Components
  • Docker Engine
  • Docker Image
  • Docker Containers
  • Docker Registry
  • Docker Basic Workflow
  • Managing Docker Containers
  • Creating our First Image
  • Understading Docker Images
  • Creating Images using Dockerfile
  • Managing Docker Images
  • Using Docker Hub registry
  • Docker Networking
  • Docker Volumes
  • Deepdive into Docker Images
  • Deepdive into Dockerfile
  • Deepdive into Docker Containers
  • Deepdive into Docker Networks
  • Deepdive into Docker Volumes
  • Deepdive into Docker Volume
  • Deepdive into Docker CPU and RAM allocations
  • Deepdive into Docker Config
  • Docker Compose Overview
  • Install & Configure Compose
  • Understanding Docker Compose Workflow
  • Understanding Docker Compose Services
  • Writing Docker Compose Yaml file
  • Using Docker Compose Commands
  • Docker Compose with Java Stake
  • Docker Compose with Rails Stake
  • Docker Compose with PHP Stake
  • Docker Compose with Nodejs Stake
  • Overview of Jira
  • Use cases of Jira
  • Architecture of Jira
  • Installation and Configuraration of Jira in Linux
  • Installation and Configuraration of Jira in Windows
  • Jira Terminologies
  • Understanding Types of Jira Projects
  • Working with Projects
  • Working with Jira Issues
  • Adding Project Components and Versions
  • Use Subtasks to Better Manage and Structure Your Issues
  • Link Issues to Other Resources
  • Working in an Agile project
  • Working with Issues Types by Adding/Editing/Deleting
  • Working with Custom Fields by Adding/Editing/Deleting
  • Working with Screens by Adding/Editing/Deleting
  • Searching and Filtering Issues
  • Working with Workflow basic
  • Introduction of Jira Plugins and Addons.
  • Jira Integration with Github
  • Exploring Confluence benefits and resources
  • Configuring Confluence
  • Navigating the dashboard, spaces, and pages
  • Creating users and groups
  • Creating pages from templates and blueprints
  • Importing, updating, and removing content
  • Giving content feedback
  • Watching pages, spaces, and blogs
  • Managing tasks and notifications
  • Backing up and restoring a site
  • Admin tasks
    • Add/Edit/Delete new users
    • Adding group and setting permissions
    • Managing user permissions
    • Managing addons or plugins
    • Customizing confluence site
  • Installing Confluence
    • Evaluation options for Confluence
    • Supported platforms
    • Installing Confluence on Windows
    • Activating Confluence trial license
    • Finalizing Confluence Installation
  • Planning - Discuss some of the Small Project Requirement which include
  • Login/Registertration with Some Students records CRUD operations.
  • Design a Method --> Classes -> Interface using Core Python
    • Fundamental of Core Python with Hello-world Program with Method --> Classes
  • Coding in Flask using HTMl - CSS - JS - MySql
    • Fundamental of Flask Tutorial of Hello-World APP
  • UT - 2 Sample unit Testing using Pythontest
  • Package a Python App
  • AT - 2 Sample unit Testing using Selenium

Technology Demonstration

  • Software Planning and Designing using JAVA
  • Core Python
  • Flask
  • mySql
  • pytest
  • Selenium
  • HTMl
  • CSS
  • Js.
  • Introduction of Git
  • Installing Git
  • Configuring Git
  • Git Concepts and Architecture
  • How Git works?
  • The Git workflow
    • Working with Files in Git
    • Adding files
    • Editing files
    • Viewing changes with diff
    • Viewing only staged changes
    • Deleting files
    • Moving and renaming files
    • Making Changes to Files
  • Undoing Changes
    • - Reset
    • - Revert
  • Amending commits
  • Ignoring Files
  • Branching and Merging using Git
  • Working with Conflict Resolution
  • Comparing commits, branches and workspace
  • Working with Remote Git repo using Github
  • Push - Pull - Fetch using Github
  • Tagging with Git
  • What is SonarQube?
  • Benefits of SonarQube?
  • Alternative of SonarQube
  • Understanding Various License of SonarQube
  • Architecture of SonarQube
  • How SonarQube works?
  • Components of SonarQube
  • SonarQube runtime requirements
  • Installing and configuring SonarQube in Linux
  • Basic Workflow in SonarQube using Command line
  • Working with Issues in SonarQube
  • Working with Rules in SonarQube
  • Working with Quality Profiles in SonarQube
  • Working with Quality Gates in SonarQube
  • Deep Dive into SonarQube Dashboard
  • Understanding Seven Axis of SonarQube Quality
  • Workflow in SonarQube with Maven Project
  • Workflow in SonarQube with Gradle Project
  • OWASP Top 10 with SonarQube

Maven

  • Introduction to Apache Maven
  • Advantage of Apache Maven over other build tools
  • Understanding the Maven Lifecycle and Phase
  • Understanding the Maven Goals
  • Understanding the Maven Plugins
  • Understanding the Maven Repository
  • Understanding and Maven Release and Version
  • Prerequisite and Installing Apache Maven
  • Understanding and using Maven Archetypes
  • Understanding Pom.xml and Setting.xml
  • Playing with multiples Maven Goals
  • Introducing Maven Dependencies
  • Introducing Maven Properties
  • Introducing Maven Modules
  • Introducing Maven Profile
  • Introducing Maven Plugins
  • How can Maven benefit my development process?
  • How do I setup Maven?
  • How do I make my first Maven project?
  • How do I compile my application sources?
  • How do I compile my test sources and run my unit tests?
  • How do I create a JAR and install it in my local repository?
  • How do I use plugins?
  • How do I add resources to my JAR?
  • How do I filter resource files?
  • How do I use external dependencies?
  • How do I deploy my jar in my remote repository?
  • How do I create documentation?
  • How do I build other types of projects?
  • How do I build more than one project at once?

Gradle

  • What is Gradle?
  • Why Gradle?
  • Installing and Configuring Gradle
  • Build Java Project with Gradle
  • Build C++ Project with Gradle
  • Build Python Project with Gradle
  • Dependency Management in Gradle
  • Project Structure in Gradle
  • Gradle Tasks
  • Gradle Profile and Cloud
  • Gradle Properties
  • Gradle Plugins

Artifactory

  • Artifactory
    • Artifactory Overview
    • Understanding a role of Artifactory in DevOps
    • System Requirements
    • Installing Artifactory in Linux
    • Using Artifactory
    • Getting Started
    • General Information
    • Artifactory Terminology
    • Artifactory Repository Types
    • Artifactory Authentication
    • Deploying Artifacts using Maven
    • Download Artifacts using Maven
    • Browsing Artifactory
    • Viewing Packages
    • Searching for Artifacts
    • Manipulating Artifacts

Packer


  • Packer
  • Getting to Know Packer
    • What is Packer?
    • Save What is Packer?
    • Installing Packer
    • Save Installing Packer
    • The Packer workflow and components
    • Save The Packer workflow and components
    • The Packer CLI
    • Save The Packer CLI
  • Baking a Website Image for EC2
  • Select an AWS AMI base
  • Save Select an AWS AMI base
  • Automate AWS AMI base build
  • Save Automate AWS AMI base build
  • Using build variables
  • Save Using build variables
  • Provision Hello World
  • Save Provision Hello World
  • Provision a basic site
  • Save Provision a basic site
  • Customization with a Config Management Tool
    • Simplify provisioning with a config tool
    • Save Simplify provisioning with a config tool
    • Use ansible to install the webserver
    • Save Use ansible to install the webserver
    • Debugging
    • Save Debugging
  • Building Hardened Images
    • Use Ansible modules to harden our image
    • Save Use Ansible modules to harden our image
    • Baking a Jenkins image
    • Save Baking a Jenkins image
  • Building a Pipeline for Packer Image
    • Validate Packer templates
    • Save Validate Packer templates
    • Create a manifest profile
    • Save Create a manifest profile
    • Testing
    • Save Testing
    • CI pipeline
    • Save CI pipeline

Junit

  • - What is Unit Testing?
  • - Tools for Unit Testing
  • - What is Junit?
  • - How to configure Junit?
  • - Writing Basic Junit Test cases
  • - Running Basic Junit Test cases
  • - Junit Test Results

Selenium

  • Introduction to Selenium
  • Components of Selenium
    • - Selenium IDE
    • - Selenium Web driver
    • - Selenium Grid
  • Installing and Configuring Selenium
  • Working with Selenium IDE
  • Working With Selenium Web driver with Java Test Case Setup and Working with Selenium Grid
  • Setup and Working with Selenium Grid
    • Jacoco

    • Overview of Code coverage process
    • Introduction of Jacoco
    • How Jacoco works!
    • How to install Jaoco?
    • Setup testing Environment with Jacoco
    • Create test data files using Jacoco and Maven
    • Create a Report using Jacoco
    • Demo - Complete workflow of Jacoco with Maven and Java Project
    • Overflow of Configuration Management
    • Introduction of Ansible
    • Ansible Architecture
    • Let’s get startted with Ansible
    • Ansible Authentication & Authorization
    • Let’s start with Ansible Adhoc commands
    • Let’s write Ansible Inventory
    • Let’s write Ansible Playbook
    • Working with Popular Modules in Ansible
    • Deep Dive into Ansible Playbooks
    • Working with Ansible Variables
    • Working with Ansible Template
    • Working with Ansible Handlers
    • Roles in Ansible
    • Ansible Galaxy
    • Understanding the Need of Kubernetes
    • Understanding Kubernetes Architecture
    • Understanding Kubernetes Concepts
    • Kubernetes and Microservices
    • Understanding Kubernetes Masters and its Component
      • kube-apiserver
      • etcd
      • kube-scheduler
      • kube-controller-manager
    • Understanding Kubernetes Nodes and its Component
      • kubelet
      • kube-proxy
      • Container Runtime
    • Understanding Kubernetes Addons
      • DNS
      • Web UI (Dashboard)
      • Container Resource Monitoring
      • Cluster-level Logging
    • Understand Kubernetes Terminology
    • Kubernetes Pod Overview
    • Kubernetes Replication Controller Overview
    • Kubernetes Deployment Overview
    • Kubernetes Service Overview
    • Understanding Kubernetes running environment options
    • Working with first Pods
    • Working with first Replication Controller
    • Working with first Deployment
    • Working with first Services
    • Introducing Helm
    • Basic working with Helm
    • Deploying Your First Terraform Configuration
      • Introduction
      • What's the Scenario?
      • Terraform Components
    • Updating Your Configuration with More Resources
      • Introduction
      • Terraform State and Update
      • What's the Scenario?
      • Data Type and Security Groups
    • Configuring Resources After Creation
      • Introduction
      • What's the Scenario?
      • Terraform Provisioners
      • Terraform Syntax
    • Adding a New Provider to Your Configuration
      • Introduction
      • What's the Scenario?
      • Terraform Providers
      • Terraform Functions
      • Intro and Variable
      • Resource Creation
      • Deployment and Terraform Console
      • Updated Deployment and Terraform Commands
    • Lets understand Continuous Integration
    • What is Continuous Integration
    • Benefits of Continuous Integration
    • What is Continuous Delivery
    • What is Continuous Deployment
    • Continuous Integration Tools

    • What is Jenkins
    • History of Jenkins
    • Jenkins Architecture
    • Jenkins Vs Jenkins Enterprise
    • Jenkins Installation and Configurations

    • Jenkins Dashboard Tour
    • Understand Freestyle Project
    • Freestyle General Tab
    • Freestyle Source Code Management Tab
    • Freestyle Build Triggers Tab
    • Freestyle Build Environment
    • Freestyle Build
    • Freestyle Post-build Actions
    • Manage Jenkins
    • My Views
    • Credentials
    • People
    • Build History

    • Creating a Simple Job
    • Simple Java and Maven Based Application
    • Simple Java and Gradle Based Application
    • Simple DOTNET and MSBuild Based Application

    • Jobs Scheduling in Jenkins
    • Manually Building
    • Build Trigger based on fixed schedule
    • Build Trigger by script
    • Build Trigger Based on pushed to git
    • Useful Jobs Configuration
    • Jenkins Jobs parameterised
    • Execute concurrent builds
    • Jobs Executors
    • Build Other Projects
    • Build after other projects are built
    • Throttle Builds

    • Jenkins Plugins
    • Installing a Plugin
    • Plugin Configuration
    • Updating a Plugin
    • Plugin Wiki
    • Top 20 Useful Jenkins Plugins
    • Using Jenkins Pluginss Best Practices
    • Jenkins Node Managment
    • Adding a Linux Node
    • Adding a Windows Nodes
    • Nodes Management using Jenkins
    • Jenkins Nodes High Availability

    • Jenkins Integration with other tools
    • Jira
    • Git
    • SonarQube
    • Maven
    • Junit
    • Ansible
    • Docker
    • AWS
    • Jacoco
    • Coverity
    • Selenium
    • Gradle

    • Reports in Jenkins
    • Junit Report
    • SonarQube Reports
    • Jacoco Reports
    • Coverity Reports
    • Selenium Reports
    • Test Results
    • Cucumber Reports

    • Jenkins Node Managment
    • Adding a Linux Node
    • Adding a Windows Nodes
    • Nodes Management using Jenkins
    • Jenkins Nodes High Availability

    • Notification & Feedback in Jenkins
    • CI Build Pipeline & Dashboard
    • Email Notification
    • Advance Email Notification
    • Slack Notification

    • Jenkins Advance - Administrator
    • Security in Jenkins
    • Authorization in Jenkins
    • Authentication in Jenkins
    • Managing folder/subfolder
    • Jenkins Upgrade
    • Jenkins Backup
    • Jenkins Restore
    • Jenkins Command Line

    Real-time monitoring

    • Datadog provides real-time monitoring of your infrastructure and applications, allowing you to quickly identify and resolve issues before they impact your users.

    Customizable dashboards

    • With Datadog, you can create customizable dashboards that give you a real-time view of your entire infrastructure. These dashboards can be tailored to your specific needs and can include metrics and alerts for all of your systems and applications.

    Integrations

    • Datadog integrates with a wide range of third-party tools and services, allowing you to monitor and manage your entire IT stack from a single platform.

    Collaboration

    • Datadog provides collaboration tools that enable your IT team to work together to resolve issues quickly and efficiently.

    Automatic alerting

    • Datadog can be configured to automatically alert you when certain metrics or events occur. You can set up alerts for things like server downtime, high CPU usage, or application errors.

    Comprehensive metrics

    • Datadog collects and analyzes a wide range of metrics from your infrastructure and applications, including server performance, network traffic, and application logs.

    Machine learning

    • Datadog's machine learning capabilities can help you identify anomalies and patterns in your data, allowing you to proactively address issues before they become critical.
    • What Is Splunk?
    • Overview
    • Machine Data
    • Splunk Architecture
    • Careers in Splunk

    • Setting up the Splunk Environment
    • Overview
    • Splunk Licensing
    • Getting Splunk
    • Installing Splunk
    • Adding Data to Splunk

    • Basic Searching Techniques
    • Adding More Data
    • Search in Splunk
    • Demo: Splunk Search
    • Splunk Search Commands
    • Splunk Processing Langauge
    • Splunk Reports
    • Reporting in Splunk
    • Splunk Alerts
    • Alerts in Splunk

    • Enterprise Splunk Architecture
    • Overview
    • Forwarders
    • Enterprise Splunk Architecture
    • Installing Forwarders
    • Installing Forwarders
    • Troubleshooting Forwarder Installation
    • Splunking for DevOps and Security
    • Splunk in DevOps
    • DevOps Demo
    • Splunk in Security
    • Enterprise Use Cases

    • Application Development in Splunkbase
    • What Is Splunkbase?
    • Navigating the Splunkbase
    • Creating Apps for Splunk
    • Benefits of Building in Splunkbase

    • Splunking on Hadoop with Hunk
    • What Is Hadoop?
    • Running HDFS Commands
    • What Is Hunk?
    • Installing Hunk
    • Moving Data from HDFS to Hunk

    • Composing Advanced Searches
    • Splunk Searching
    • Introduction to Advanced Searching
    • Eval and Fillnull Commands
    • Other Splunk Command Usage
    • Filter Those Results!
    • The Search Job Inspector

    • Creating Search Macros
    • What Are Search Macros?
    • Using Search Macros within Splunk
    • Macro Command Options and Arguments
    • Other Advanced Searching within Splunk
    • Introduction and Overview of NewRelic
    • What is Application Performance Management?
    • Understanding a need of APM
    • Understanding transaction traces
    • What is Application Performance?
    • APM Benefits
    • APM Selection Criteria
    • Why NewRelic is best for APM?
    • What is NewRelic APM?
    • How does NewRelic APM work?
    • NewRelic Architecture
    • NewRelic Terminology
    • Installing and Configuring NewRelic APM Agents for Application
    • Register a Newrelic Trial account
    • Installing a JAVA Agent to Monitor your Java Application
    • Installing a PHP Agent to Monitor your PHP Application
    • Installing New Relic Agent for .NET Framework Application
    • Installing a Docker based Agent to Monitor your Docker based Application
    • Understanding of NewRelic Configration settings of newrelic.yml
    • Understanding of NewRelic Agent Configration settings
    • Working with NewRelic Dashboard
    • Understanding a transactions
    • Understanding Apdex and Calculating and Setting Apdex Threshold
    • Understanding Circuit break
    • Understanding Throughput
    • Newrelic default graphs
    • Understanding and Configuring Service Maps
    • Understanding and Configuring JVM
    • Understanding Error Analytics
    • Understanding Violations
    • Understanding and Configuring Deployments
    • Understanding and Configuring Thread Profiler
    • Depp Dive into Transaction Traces
    • Profiling with New Relic
    • Creating and managing Alerts
    • Working with Incidents
    • Sending NewRelic Alerts to Slack
    • Assessing the quality of application deployments
    • Monitoring using Newrelic
    • View your applications index
    • APM Overview page
    • New Relic APM data in Infrastructure
    • Transactions page
    • Databases and slow queries
    • Viewing slow query details
    • External services page
    • Agent-specific UI
    • Viewing the transaction map

    • Deep Dive into Newrelic Advance
    • Newrelic transaction alerts
    • Configure abnd Troubleshoot and Cross Application Traces
    • NewRelic Service Level Agreements
    • Troubleshooting NewRelic
    • Understanding and Configuring NewRelic X-Ray Sessions
    • Deep Dive into NewRelic Agent Configuration
    • Adding Custom Data with the APM Agent
    • Extending Newrelic using Plugins
    • Finding and Fixing Application Performance Issues with New Relic APM
    • Setting up database montioring using Newrelic APM
    • Setting up and Configuring Newrelic Alerts

    • Working with NewRelic Performance Reports
    • Availability report
    • Background jobs analysis report
    • Capacity analysis report
    • Database analysis report
    • Host usage report
    • Scalability analysis report
    • Web transactions analysis report
    • Weekly performance report

    Session 1: Introduction to ArgoCD

    • Overview of ArgoCD and its features
    • Understanding the role of ArgoCD in GitOps workflows
    • Key concepts and components of ArgoCD

    Session 2: Installing and Configuring ArgoCD

    • Preparing the environment for ArgoCD installation
    • Step-by-step installation guide for ArgoCD
    • Configuring ArgoCD server and connecting it to the Git repository

    Session 3: ArgoCD Architecture and Components

    • Understanding the architecture of ArgoCD
    • Exploring the various components of ArgoCD, such as the API server, controller, and repository server

    Session 4: Deploying Applications with ArgoCD

    • Creating applications in ArgoCD
    • Configuring application specifications using GitOps manifests
    • Deploying applications and managing their lifecycle with ArgoCD

    Session 5: Continuous Delivery with ArgoCD

    • Implementing continuous delivery pipelines using ArgoCD
    • Automating application updates and rollbacks with ArgoCD
    • Monitoring and managing application deployments with ArgoCD

    Session 6: Advanced ArgoCD Features

    • Exploring advanced features of ArgoCD, such as RBAC and secrets management
    • Integrating ArgoCD with other tools and services, like Kubernetes, Helm, and Prometheus

    Session 7: Troubleshooting and Best Practices

    • Common issues and troubleshooting techniques in ArgoCD
    • Best practices for managing and maintaining ArgoCD deployments
    • Tips for optimizing performance and scalability in ArgoCD

    Apache HTTP

    • Introduction to web server
    • Install Apache on CentOS 7.4
    • Enable Apache to automatically start when system boot
    • Configure the firewall service
    • Where is Apache?
    • Directory structure
      • Apache directory structure
      • Configuration file
      • Create your first page
    • Virtual hosts
      • Setting up the virtual host - name based
      • Setting up the virtual host - port based
    • Using aliases and redirecting
    • Configuring an alias for a url
    • Redirects
    • Logging
      • The error log
      • The access log
      • Custom log
      • Log rotation
    • Security
      • Basic Security - Part 1
      • Basic Security - Part 2
      • Set up TLS/SSl for free
      • Basic authentication
      • Digest authentication
      • Access Control
      • .htaccess (Administrator Side)
      • .htaccess (User Side)
      • Install and Configure antivirus
      • Mitigate dos attacks - mod_evasive
    • Apache Performance and Troubleshooting
      • Apache Multi-Processing Modules (MPMs)
      • Adjusting httpd.conf - Part 1
      • Adjusting httpd.conf - Part 2
      • Troubleshoot Apache (Analyz Access Log) - Part 1
      • Troubleshoot Apache (Analyze Access Log) - Part 2
      • Use Apachetop to monitor web server traffic

    Nginx

    • Overview
      • Introduction
      • About NGINX
      • NGINX vs Apache
      • Test your knowledge
    • Installation
      • Server Overview
      • Installing with a Package Manager
      • Building Nginx from Source & Adding Modules
      • Adding an NGINX Service
      • Nginx for Windows
      • Test your knowledge
    • Configuration
      • Understanding Configuration Terms
      • Creating a Virtual Host
      • Location blocks
      • Variables
      • Rewrites & Redirects
      • Try Files & Named Locations
      • Logging
      • Inheritance & Directive types
      • PHP Processing
      • Worker Processes
      • Buffers & Timeouts
      • Adding Dynamic Modules
      • Test your knowledge
    • Performance
      • Headers & Expires
      • Compressed Responses with gzip
      • FastCGI Cache
      • HTTP2
      • Server Push
    • Security
      • HTTPS (SSL)
      • Rate Limiting
      • Basic Auth
      • Hardening Nginx
      • Test your knowledge
      • Let's Encrypt - SSL Certificates
    • Multi-cluster management
      • Rancher provides a unified interface for managing multiple Kubernetes clusters across different environments, including on-premises, cloud, and hybrid.
    • Centralized administration
      • With Rancher, you can manage user access, security policies, and cluster settings from a central location, making it easier to maintain a consistent and secure deployment across all clusters.
    • Automated deployment
      • Rancher streamlines the application deployment process by providing built-in automation tools that allow you to deploy applications to multiple clusters with just a few clicks.
    • Monitoring and logging
      • Rancher provides a built-in monitoring and logging system that enables you to monitor the health and performance of your applications and clusters in real-time.
    • Application catalog
      • Rancher offers a curated catalog of pre-configured application templates that enable you to deploy and manage popular applications such as databases, web servers, and messaging queues.
    • Scalability and resilience
      • Rancher is designed to be highly scalable and resilient, enabling you to easily add new clusters or nodes to your deployment as your needs grow.
    • Extensibility
      • Rancher provides an open API and a rich ecosystem of plugins and extensions, enabling you to customize and extend the platform to meet your specific needs.
    Envoy

      Data Plane

    • Envoy is a high-performance proxy that is deployed as a sidecar to each microservice in the infrastructure.
    • Envoy manages all inbound and outbound traffic for the microservice and provides features like load balancing, circuit breaking, and health checks.
    • Envoy can also be used as a standalone proxy outside of a service mesh architecture.

    • Control Plane:

    • Envoy does not have a built-in control plane.
    • It can be integrated with other service mesh management solutions like Istio, Consul, or Linkerd, which provide a central point of management for the Envoy proxies.
    • These control planes enable features like traffic management, security, and observability.
    Istio:

      Data Plane:

    • Istio uses Envoy as its data plane, which means that each microservice has an Envoy sidecar proxy that manages the inbound and outbound traffic for that service.
    • Envoy is configured and managed by Istio's control plane components.

    • Control Plane:

    • Istio provides a built-in control plane that includes the following components:
    • Pilot: responsible for managing the configuration of the Envoy proxies and enabling features like traffic routing and load balancing.
    • Mixer: provides policy enforcement, telemetry collection, and access control for the microservices in the service mesh.
    • Citadel: responsible for managing the security of the service mesh, including mutual TLS encryption and identity-based access control.

      Network Configurations:

    • Consul provides a central service registry that keeps track of all the services in the infrastructure.
    • Each microservice in the infrastructure registers itself with Consul, providing information like its IP address, port, and health status.
    • Consul also supports multiple datacenters, allowing for the deployment of services across different regions or availability zones.
    • Consul provides a DNS interface that can be used to discover services in the infrastructure. Applications can use this interface to resolve service names to IP addresses and connect to the appropriate service.

      Service Discovery:

    • Consul provides a service discovery mechanism that enables microservices to discover and communicate with each other.
    • Consul supports different service discovery methods, including DNS, HTTP, and gRPC.
    • Consul can perform health checks on the services in the infrastructure to ensure that they are functioning properly. If a service fails a health check, it is removed from the service registry until it is healthy again.
    • Consul also supports service segmentation, allowing services to be grouped into logical subsets based on tags or other attributes. This enables more fine-grained control over service discovery and traffic routing.

      Secret Storage:

    • Vault provides a secure storage mechanism for sensitive data, including credentials, API keys, and other secrets.
    • Vault uses encryption and access control policies to ensure that secrets are protected both at rest and in transit.
    • Vault supports different storage backends, including disk, cloud storage, and key management systems.

    • Authentication:

    • Vault provides several authentication methods that can be used to validate user or machine identity.
    • These methods include LDAP, Active Directory, Kubernetes, and token-based authentication.
    • Vault also supports multi-factor authentication (MFA) to provide an additional layer of security.

    • Access Control:

    • Vault provides fine-grained access control policies that can be used to restrict access to specific secrets or resources.
    • These policies can be based on user or machine identity, time of day, and other factors.
    • Vault supports role-based access control (RBAC) and attribute-based access control (ABAC) policies.

      Encryption:

    • Vault provides end-to-end encryption for all secrets stored in its storage backend.
    • Vault uses encryption keys that are stored separately from the secrets themselves, providing an additional layer of security.
    • Vault supports different encryption algorithms and key management systems.

    • Auditing and Logging:

    • Vault provides detailed auditing and logging capabilities that can be used to track access to secrets and detect potential security threats.
    • Vault logs all user and system activity, including authentication events, secret access, and configuration changes.
    • Vault also supports integration with popular logging and monitoring tools.

    Prometheus

    • Introduction
    • Introduction to Prometheus
    • Prometheus installation
    • Grafana with Prometheus Installation

    • Monitoring
    • Introduction to Monitoring
    • Client Libraries
    • Pushing Metrics
    • Querying
    • Service Discovery
    • Exporters

    • Alerting
    • Introduction to Alerting
    • Setting up Alerts

    • Internals
    • Prometheus Storage
    • Prometheus Security
    • TLS & Authentication on Prometheus Server
    • Mutual TLS for Prometheus Targets

    • Use Cases
    • Monitoring a web application
    • Calculating Apdex score
    • Cloudwatch Exporter
    • Grafana Provisioning
    • Consul Integration with Prometheus
    • EC2 Auto Discovery

    Grafana

    • Installation
    • Installing on Ubuntu / Debian
    • Installing on Centos / Redhat
    • Installing on Windows
    • Installing on Mac
    • Installing using Docker
    • Building from source
    • Upgrading

    • Administration
    • Configuration
    • Authentication
    • Permissions
    • Grafana CLI
    • Internal metrics
    • Provisioning
    • Troubleshooting
    • Introduction to Elasticsearch
    • Overview of the Elastic Stack (ELK+)
    • Elastic Stack

    • Architecture of Elasticsearch
    • Nodes & Clusters
    • Indices & Documents
    • A word on types
    • Another word on types
    • Sharding
    • Replication
    • Keeping replicas synchronized
    • Searching for data
    • Distributing documents across shards

    • Installing Elasticsearch & Kibana
    • Running Elasticsearch & Kibana in Elastic Cloud
    • Installing Elasticsearch on Mac/Linux
    • Using the MSI installer on Windows
    • Installing Elasticsearch on Windows
    • Configuring Elasticsearch
    • Installing Kibana on Mac/Linux
    • Installing Kibana on Windows
    • Configuring Kibana
    • Kibana now requires data to be available
    • Introduction to Kibana and dev tools

    • Managing Documents
    • Creating an index
    • Adding documents
    • Retrieving documents by ID
    • Replacing documents
    • Updating documents
    • Scripted updates
    • Upserts
    • Deleting documents
    • Deleting indices
    • Batch processing
    • Importing test data with cURL
    • Exploring the cluster

    • Mapping
    • Introduction to mapping
    • Dynamic mapping
    • Meta fields
    • Field data types
    • Adding mappings to existing indices
    • Changing existing mappings
    • Mapping parameters
    • Adding multi-fields mappings
    • Defining custom date formats
    • Picking up new fields without dynamic mapping
    • Analysis & Analyzers
    • Introduction to the analysis process
    • A closer look at analyzers
    • Using the Analyze API
    • Understanding the inverted index
    • Analyzers
    • Overview of character filters
    • Overview of tokenizers
    • Overview of token filters
    • Overview of built-in analyzers
    • Configuring built-in analyzers and token filters
    • Creating custom analyzers
    • Using analyzers in mappings
    • Adding analyzers to existing indices
    • A word on stop words

    • Introduction to Searching
    • Search methods
    • Searching with the request URI
    • Introducing the Query DSL
    • Understanding query results
    • Understanding relevance scores
    • Debugging unexpected search results
    • Query contexts
    • Full text queries vs term level queries
    • Basics of searching

    • Term Level Queries
    • Introduction to term level queries
    • Searching for a term
    • Searching for multiple terms
    • Retrieving documents based on IDs
    • Matching documents with range values
    • Working with relative dates (date math)
    • Matching documents with non-null values
    • Matching based on prefixes
    • Searching with wildcards
    • Searching with regular expressions
    • Term Level Queries

    • Full Text Queries
    • Introduction to full text queries
    • Flexible matching with the match query
    • Matching phrases
    • Searching multiple fields
    • Full Text Queries

    • Adding Boolean Logic to Queries
    • Introduction to compound queries
    • Querying with boolean logic
    • Debugging bool queries with named queries
    • How the “match” query works

      Alert Management:

    • Both PagerDuty and Opsgenie provide powerful alert management capabilities, allowing teams to configure alerts based on specific criteria, such as event severity, priority, and more.
    • Alerts can be sent to multiple channels, including email, SMS, voice, and mobile push notifications.
    • Both tools also provide support for escalation policies, allowing teams to ensure that critical alerts are addressed promptly.

    • Incident Management:

    • Both PagerDuty and Opsgenie provide incident management capabilities, allowing teams to track incidents and collaborate on resolving them.
    • Incident management features include creating incidents, adding notes, assigning owners, and tracking status changes.
    • Both tools also provide support for incident timelines, allowing teams to visualize the progress of an incident over time.

    • Integration:

    • Both PagerDuty and Opsgenie provide extensive integration capabilities, allowing teams to integrate with a wide range of tools and technologies.
    • Integrations include popular monitoring tools, such as Nagios, New Relic, and AWS CloudWatch, as well as IT service management (ITSM) tools like JIRA and ServiceNow.
    • Both tools also provide REST APIs for custom integrations.

      Analytics and Reporting:

    • Both PagerDuty and Opsgenie provide analytics and reporting capabilities, allowing teams to track performance metrics and identify areas for improvement.
    • Analytics and reporting features include incident duration, resolution times, and other key performance indicators (KPIs).
    • Both tools also provide support for custom dashboards and reports.

    • Automation:

    • Both PagerDuty and Opsgenie provide automation capabilities, allowing teams to automate repetitive tasks and streamline incident response processes.
    • Automation features include auto-acknowledgment of alerts, auto-escalation of incidents, and auto-remediation of issues.
    • Both tools also provide support for scripting and custom automation workflows.

      Job Scheduling:

    • RunDeck provides powerful job scheduling capabilities, allowing teams to schedule jobs based on specific criteria, such as time, date, and recurrence.
    • Jobs can be executed on multiple platforms, including Windows, Linux, and macOS.
    • RunDeck also provides support for job dependencies, allowing teams to ensure that jobs are executed in the correct order.

    • Run Book Automation:

    • RunDeck provides run book automation capabilities, allowing teams to automate repetitive tasks and streamline operations.
    • Run book automation features include executing commands, scripts, and workflows on multiple systems, as well as orchestrating complex processes across multiple systems.
    • RunDeck also provides support for auditing and logging, allowing teams to track changes and monitor system activity.

    • Integration:

    • RunDeck provides extensive integration capabilities, allowing teams to integrate with a wide range of tools and technologies.
    • Integrations include popular configuration management tools, such as Ansible and Puppet, as well as monitoring tools like Nagios and Zabbix.
    • RunDeck also provides REST APIs for custom integrations.

      Access Control:

    • RunDeck provides access control capabilities, allowing teams to control who can access and execute jobs and workflows.
    • Access control features include role-based access control (RBAC), LDAP integration, and multi-factor authentication (MFA).
    • RunDeck also provides support for audit logging, allowing teams to track user activity and changes to system configurations.

    • Notifications and Reporting:

    • RunDeck provides notifications and reporting capabilities, allowing teams to track performance metrics and identify areas for improvement.
    • Notifications and reporting features include job execution status, error notifications, and custom reports.
    • RunDeck also provides support for custom dashboards and reports.

      Application Performance Monitoring:

    • AppDynamics provides powerful application performance monitoring capabilities, allowing teams to monitor the performance of their applications in real-time.
    • APM features include application topology maps, transaction tracing, code-level diagnostics, and performance baselines.
    • AppDynamics also provides support for identifying and troubleshooting performance issues, such as slow database queries, inefficient code, and memory leaks.

    • End-User Monitoring:

    • AppDynamics provides end-user monitoring capabilities, allowing teams to track the performance of their applications from the end-user perspective.
    • End-user monitoring features include real-user monitoring, synthetic monitoring, and business transaction monitoring.
    • AppDynamics also provides support for identifying and troubleshooting end-user issues, such as slow page load times and errors.

    • Infrastructure Monitoring:

    • AppDynamics provides infrastructure monitoring capabilities, allowing teams to monitor the health and performance of their infrastructure.
    • Infrastructure monitoring features include server monitoring, container monitoring, and cloud monitoring.
    • AppDynamics also provides support for identifying and troubleshooting infrastructure issues, such as high CPU usage, low memory, and network latency.

      Integration:

    • AppDynamics provides extensive integration capabilities, allowing teams to integrate with a wide range of tools and technologies.
    • Integrations include popular monitoring tools, such as Splunk and Elasticsearch, as well as IT service management (ITSM) tools like ServiceNow and Remedy.
    • AppDynamics also provides REST APIs for custom integrations.

    • Analytics and Reporting:

    • AppDynamics provides analytics and reporting capabilities, allowing teams to track performance metrics and identify areas for improvement.
    • Analytics and reporting features include transaction analysis, error analysis, and custom dashboards.
    • AppDynamics also provides support for machine learning and predictive analytics, allowing teams to proactively identify and address performance issues.

    STRIDE:

    • STRIDE is a threat modeling methodology developed by Microsoft that identifies six types of threats: Spoofing, Tampering, Repudiation, Information Disclosure, Denial of Service, and Elevation of Privilege.
    • The STRIDE approach involves analyzing each component of a system to identify potential threats and vulnerabilities, and then determining appropriate countermeasures to mitigate these risks.

    PASTA:

    • PASTA is a Process for Attack Simulation and Threat Analysis that is based on the concept of "attacker thinking".
    • The PASTA approach involves identifying potential attackers and their motivations, analyzing potential attack paths, and identifying countermeasures to mitigate these risks.
    • PASTA is a comprehensive methodology that considers both technical and non-technical factors in the threat modeling process.

    VAST:

    • VAST is a Visual, Agile, and Simple Threat modeling methodology that is designed to be accessible to both technical and non-technical stakeholders.
    • The VAST approach involves creating visual models of the system and its components, and then identifying potential threats and vulnerabilities through a series of brainstorming sessions.
    • VAST is designed to be flexible and adaptable, and can be used in a variety of development methodologies.

    Microsoft Threat Modeling Tool:

    • The Microsoft Threat Modeling Tool is a free tool that helps organizations identify potential threats and vulnerabilities in their software systems.
    • The tool uses the STRIDE methodology and allows users to create data flow diagrams of their systems, which can then be analyzed for potential threats and vulnerabilities.
    • The Microsoft Threat Modeling Tool provides a comprehensive set of reports and analysis tools, allowing users to prioritize and address potential risks.

    OWASP Threat Dragon:

    • OWASP Threat Dragon is an open-source tool that helps organizations identify potential threats and vulnerabilities in their software systems.
    • The tool uses a data flow diagram approach to threat modeling, allowing users to create visual models of their systems and identify potential attack paths.
    • OWASP Threat Dragon provides a comprehensive set of reports and analysis tools, and is designed to integrate with other development tools and methodologies.

      OWASP ZAP (Zed Attack Proxy):

      • OWASP ZAP is a free, open-source DAST tool that can be used to identify vulnerabilities in web applications.
      • ZAP can be used to perform a variety of tests, including active scanning, passive scanning, and fuzz testing.
      • The tool provides a user-friendly interface and can be integrated with other testing tools and frameworks.

      Skipfish:

      • Skipfish is a free, open-source DAST tool that can be used to identify vulnerabilities in web applications.
      • Skipfish is designed to be fast and efficient, making it a good choice for testing large, complex web applications.
      • The tool can be run in parallel, allowing it to perform tests on multiple web applications simultaneously.

      Nmap:

      • Nmap is a free, open-source network scanning tool that can be used to identify open ports and services on a network.
      • Nmap can also be used to identify potential vulnerabilities in web applications and other network services.
      • The tool provides a variety of scanning options, including stealth scanning and operating system fingerprinting.

      OpenVAS:

      • OpenVAS is a free, open-source vulnerability scanner that can be used to identify vulnerabilities in web applications and other network services.
      • The tool provides a comprehensive set of tests, including active scanning, passive scanning, and vulnerability analysis.
      • OpenVAS also provides a variety of reporting options, including detailed reports and risk assessments.

      Fortify WebInspect:

      • Fortify WebInspect is a commercial DAST tool that can be used to identify vulnerabilities in web applications.
      • The tool provides a comprehensive set of tests, including active scanning, passive scanning, and fuzz testing.
      • Fortify WebInspect also provides a variety of reporting options, including detailed reports and risk assessments.

      Network Configurations:

    • Consul provides a central service registry that keeps track of all the services in the infrastructure.
    • Each microservice in the infrastructure registers itself with Consul, providing information like its IP address, port, and health status.
    • Consul also supports multiple datacenters, allowing for the deployment of services across different regions or availability zones.
    • Consul provides a DNS interface that can be used to discover services in the infrastructure. Applications can use this interface to resolve service names to IP addresses and connect to the appropriate service.

      Service Discovery:

    • Consul provides a service discovery mechanism that enables microservices to discover and communicate with each other.
    • Consul supports different service discovery methods, including DNS, HTTP, and gRPC.
    • Consul can perform health checks on the services in the infrastructure to ensure that they are functioning properly. If a service fails a health check, it is removed from the service registry until it is healthy again.
    • Consul also supports service segmentation, allowing services to be grouped into logical subsets based on tags or other attributes. This enables more fine-grained control over service discovery and traffic routing.
    • Introduction to Software Composition Analysis (SCA) and its importance in modern software development.
    • Overview of OWASP Dependency Check as a popular SCA tool in the market.
    • Understanding the SCA process: scanning, analysis, and remediation.
    • Deep-dive into OWASP Dependency Check, including installation, configuration, and usage.
    • Demo of OWASP Dependency Check, including a walk-through of its user interface and workflow.
    • Understanding OWASP Dependency Check reports and how to interpret them.
    • Best practices for using OWASP Dependency Check in SCA, including how to interpret and act on its findings.
    • Integration of OWASP Dependency Check with CI/CD pipelines and other development tools.
    • Common issues and limitations of SCA tools like OWASP Dependency Check and how to mitigate them.
    • Real-world examples of how OWASP Dependency Check has helped organizations improve their software security.
    • Future developments in OWASP Dependency Check and SCA in general.
    • Q&A session to answer any remaining questions or concerns about OWASP Dependency Check, SCA, or software security in general.
    • Introduction to Software Composition Analysis (SCA) and its importance in modern software development.
    • Overview of JFrog Xray as a popular SCA tool in the market.
    • Understanding the SCA process: scanning, analysis, and remediation.
    • Deep-dive into JFrog Xray, including installation, configuration, and usage.
    • Demo of JFrog Xray, including a walk-through of its user interface and workflow.
    • Understanding JFrog Xray reports and how to interpret them.
    • Best practices for using JFrog Xray in SCA, including how to interpret and act on its findings.
    • Integration of JFrog Xray with CI/CD pipelines and other development tools.
    • Common issues and limitations of SCA tools like JFrog Xray and how to mitigate them.
    • Real-world examples of how JFrog Xray has helped organizations improve their software security.
    • Future developments in JFrog Xray and SCA in general.
    • Comparison between JFrog Xray and other SCA tools in terms of features, capabilities, and pricing.
    • Q&A session to answer any remaining questions or concerns about JFrog Xray, SCA, or software security in general.

    Falco

    • Securuing Containers (RASP)- Twistkock
    • Falco Components
    • Userspace program
    • Falco Configuration
    • Privilege escalation using privileged containers
    • Namespace changes using tools like setns
    • Read/Writes to well-known directories such as /etc, /usr/bin, /usr/sbin
    • Creating symlinks
    • Ownership and Mode changes
    • Unexpected network connections or socket mutations
    • Securuing Containers (RASP)- Falco
    • Spawned processes using execve
    • Falco drivers
    • Falco userspace program
    • Executing shell binaries such as sh, bash, csh, zsh, etc
    • Executing SSH binaries such as ssh, scp, sftp, etc
    • Mutating Linux coreutils executables
    • Mutating login binaries
    • Mutating shadowutil or passwd executables

    Notary

    • What is CNCF Notary
    • Why CNCF Notary?
    • What is The Update Framework (TUF)?
    • Understand the Notary service architecture
    • Brief overview of TUF keys and roles
    • Architecture and components
    • Example client-server-signer interaction
    • Threat model
    • Notary server compromise
    • Notary signer compromise
    • Notary client keys and credentials compromise
    • Run a Notary service
    • Notary configuration files
    • Introduction to Web Application Firewall (WAF) and its importance in securing web applications.
    • Overview of AWS WAF, Azure Web Application Firewall, and Cloudflare Web Application Firewall as popular WAF solutions in the market.
    • Understanding the architecture and key features of each WAF solution.
    • Deep-dive into each WAF solution, including installation, configuration, and usage.
    • Demo of each WAF solution, including a walk-through of its user interface and workflow.
    • Understanding WAF rules and how to create and customize them for specific use cases in each WAF solution.
    • Best practices for using each WAF solution to protect web applications, including how to interpret and act on its findings.
    • Integration of each WAF solution with other cloud services and development tools.
    • Common issues and limitations of WAF solutions like AWS WAF, Azure Web Application Firewall, and Cloudflare Web Application Firewall and how to mitigate them.
    • Real-world examples of how each WAF solution has helped organizations improve their web application security.
    • Comparison between AWS WAF, Azure Web Application Firewall, and Cloudflare Web Application Firewall in terms of features, capabilities, and pricing.
    • Future developments in WAF solutions and WAF in general.
    • Q&A session to answer any remaining questions or concerns about AWS WAF, Azure Web Application Firewall, Cloudflare Web Application Firewall, WAF, or web application security in general.
    • Introduction to securing credentials and why it is important in today's security landscape.
    • Overview of HashiCorp Vault, AWS Secrets Manager, Azure Key Vault, AWS KMS, and Kubernetes Secrets as popular solutions for securing credentials.
    • Understanding the architecture and key features of each solution.
    • Deep-dive into each solution, including installation, configuration, and usage.
    • Demo of each solution, including a walk-through of its user interface and workflow.
    • Understanding the types of credentials that can be secured using each solution.
    • Best practices for using each solution to secure credentials, including how to interpret and act on its findings.
    • Integration of each solution with other cloud services and development tools.
    • Common issues and limitations of each solution and how to mitigate them.
    • Real-world examples of how each solution has helped organizations improve their credential security.
    • Comparison between HashiCorp Vault, AWS Secrets Manager, Azure Key Vault, AWS KMS, and Kubernetes Secrets in terms of features, capabilities, and pricing.
    • Future developments in securing credentials and the solutions that support them.
    • Q&A session to answer any remaining questions or concerns about securing credentials using HashiCorp Vault, AWS Secrets Manager, Azure Key Vault, AWS KMS, Kubernetes Secrets, or credential security in general.
    • Introduction to policy-based control and its importance in cloud native environments.
    • Overview of Open Policy Agent (OPA) as a popular open-source policy engine for cloud native environments.
    • Understanding the architecture and key features of OPA, including the Rego policy language.
    • Deep-dive into OPA, including installation, configuration, and usage.
    • Demo of OPA, including a walk-through of its user interface and workflow.
    • Understanding how policies can be defined in OPA using the Rego policy language, and how they can be enforced in cloud native environments.
    • Best practices for defining policies in OPA to ensure proper control and compliance.
    • Integrating OPA with cloud native technologies, such as Kubernetes, Istio, and Envoy, to enforce policies.
    • Leveraging OPA to ensure compliance with industry standards and regulations, such as CIS benchmarks and GDPR.
    • Monitoring and auditing policy compliance using OPA.
    • Common issues and limitations of OPA and how to mitigate them.
    • Real-world examples of how OPA has helped organizations improve their policy-based control in cloud native environments.
    • Future developments in policy-based control and OPA, including the potential for machine learning and AI-based policy enforcement.
    • Comparison between OPA and other policy engines in terms of features, capabilities, and pricing.
    • Q&A session to answer any remaining questions or concerns about policy-based control for cloud native environments using Open Policy Agent.
    • Introduction to cloud security and the shared responsibility model for cloud security.
    • Overview of AWS security services, such as AWS Identity and Access Management (IAM), AWS Key Management Service (KMS), and AWS Security Hub.
    • Best practices for securing AWS resources, including configuring network security, managing access control, and securing data.
    • Understanding AWS compliance and regulatory requirements, such as HIPAA and PCI DSS.
    • Overview of Azure security services, such as Azure Active Directory (AD), Azure Security Center, and Azure Key Vault.
    • Best practices for securing Azure resources, including configuring network security, managing access control, and securing data.
    • Understanding Azure compliance and regulatory requirements, such as GDPR and ISO 27001.
    • Comparing and contrasting AWS and Azure security services and practices.
    • Cloud security automation with tools like AWS CloudFormation and Azure Resource Manager.
    • Container security best practices with AWS Elastic Container Service (ECS) and Azure Kubernetes Service (AKS).
    • DevSecOps practices and tooling for cloud security.
    • Real-world examples of how organizations have successfully implemented cloud security practices with AWS and Azure.
    • Future trends and developments in cloud security.
    • Q&A session to answer any remaining questions or concerns about cloud security with AWS and Azure.
    • Introduction to SIEM and its role in security operations.
    • Overview of Splunk SIEM, its architecture, and its components.
    • Data ingestion and management in Splunk SIEM, including configuring data sources and handling data volume and retention.
    • Creating and managing dashboards, reports, and alerts in Splunk SIEM.
    • Splunk SIEM search language and syntax, including basic and advanced search commands.
    • Using Splunk Enterprise Security (ES) to manage and analyze security events and incidents.
    • Integrating third-party security tools and platforms with Splunk SIEM.
    • Best practices for deploying and scaling Splunk SIEM in enterprise environments.
    • Splunk SIEM use cases and real-world examples of how organizations have successfully implemented it for security operations.
    • Future trends and developments in SIEM and Splunk SIEM.
    • Q&A session to answer any remaining questions or concerns about Splunk SIEM and SIEM in general.

    PROJECT


    In MDE Course a Participant will get total 3 real time scenario based projects to work on, as part of these projects, we would help our participant to have first hand experience of real time scenario based software project development planning, coding, deployment, setup and monitoring in production from scratch to end. We would also help our participants to visualize a real development environment, testing environment and production environments.

    Interview


    As part of this, You would be given complete interview preparations kit, set to be ready for the DevOps hotseat. This kit has been crafted by 200+ years industry experience and the experiences of nearly 10000 DevOpsSchool DevOps learners USA.

    OUR COURSE IN COMPARISON


    FEATURES DEVOPSSCHOOL OTHERS
    1 Course for All (DevOps/DevSecOps/SRE)
    Faculty Profile Check
    Lifetime Technical Support
    Lifetime LMS access
    Top 46 Tools
    Interview KIT (Q&A)
    Training Notes
    Step by Step Web Based Tutorials
    Training Slides
    Training + Additional Videos
    • DevOps changes the landscape completely and we can observe it by this example: if you will see today in the job descriptions, you look at the developers today there is no Java developer there is no DOTNET developers there are full stack developers. All of them are powered by tools, everybody wants to release faster, everybody want to be more secure and therefore, if you don’t know how to combine your skills and role with the power of tools and automation which is DevOps, you will fall behind.
    • As DevOps at its core is a cultural shift from traditional way of working to a new approach of working together which allows building, testing, and deploying software rapidly, frequently, and reliably. This approach no doubt helps organization and enterprises to achieve their goals quicker and faster turnaround time to deploy the new features, security issues, and bug fixes.
    • But, it affects the entire work process and this change cannot be possible to implement overnight. DevOps shift asked for automation at several stages which helps in achieving Continuous Development, Continuous Integration, Continuous Testing, Continuous Deployment, Continuous Monitoring, Virtualization and Containerization to provide a quality product to the end user at a very fast pace. This requires careful and gradual implementation so as to not make a mess of the functioning of the organization
    • DevOps implementation requires peoples who can understand the organization current scenarios and helps them to implement this shift accordingly. There is no single tool or magic pill that can fix existing issues in organizations and achieve the purpose of DevOps to work on collaboration. Therefore a software engineer nowadays must possess the DevOps skills and mindset and required various tools knowledge and they should have that sound knowledge to understand where to use these tools accordingly to automate the complete process

    • Apart from DevOps:

      DevOps, DevSecOps and Site Reliability Engineering (SRE) all three are going to rule the Software Development Industry.

      DevOps aims to increase the speed of software delivery by enabling continuous collaboration, communication, automation and integration.

      DevSecOps aims to increase the level of security with faster development. It helps developers and security professionals find and maintian a healthy balance instead of priotizing the faster software delivery.

      After that, the requirement of an SRE naturally comes when a team is implementing DevOps and DevSecOps. SRE make sure to enable balance between developing new features on the one hand, and ensuring that production systems run smoothly and reliably, on the other.

      Earlier DevOps were adopted and still transition is going on from Agile to DevOps and after lots of debate IT leaders are really looking forward to shifting towards DevSecOps mindset. ANd now SRE concept introduced by Google engineer's who build and implement softwares to improve the reliability of systems.

      Its no more DevOps vs DevSecOp vs SRE - it’s SRE with DevOps and DevSecOps. In a nuthsell we can say, DevOps asks what needs to be done, DevSecOps asks it also needs to be done and SRE asks how that can be done.

      All disciplines, DevOps, DevSecOp and SREs, aims to enhance the release cycle by helping developers and oprations and QAs to see each other’s side of the process throughout the software development lifecycle. They also advocate automation and monitoring, reducing the time from when a developer commits a change to when it’s deployed to production. It requires full commitment from everyone involved in the process. They all aim for this result without compromising the quality of the code or the product itself. The whole team can work together to deliver a secure product that can be easily updated, managed, and monitored.

    • The transition from DevOps to DevSecOps with SRE comes with many challenges and implementation of all these concepts are not that easy.
    • Our "Master in DevOps Engineering" (including DevSecOps and SRE) course is tailored for those who wants to make them fit and preapared for all the upcoming challenges which software industry is going to face with all these transitions and happenings and for that they need experts and professionals to overcome all those challenges and make their adoption and transition smoother and easier.
    • This program highlights the evolution of DevOps, DevSecOps, SRE and its future direction, and equips candidates with the best practices, key principles, methods, and tools to engage people across the organization bridging the gap between software developers, QAs and operations teams and involved in reliability and stability evidenced through the use of real-life scenarios and use cases.
    • We have top-notch industry experts as our DevOps instructors, mentors and coaches with at least 15-20 years of experience.
    • We will make sure to be taught by the best trainers and faculties in all classroom public batches and workshops available in Bangalore/Bengaluru.
    • We provide our each participant real-time scenario based projects and assignments to work on where they can implement their learnings after training. This project helps them to understand real-time work scenarios, challenges and how to overcome them easily.
    • We have the only Master DevOps course in the industry where one can deep dive into DevOps, DevSecOps and SRE concepts
    • We are working in the training and consulting domain from last 4 years and based on our experience we know that one size does not fit to all which means we know that our pre-decided agenda sometimes cannot work for you. In that scenario you can discuss with our subject matter experts to create training solutions that will address your or your team specific requirements
    • After training each participant will be awarded with industry-recognized "Master in DevOps Engineering Certified Professional" (MDE) certification from DevOpschool with association of DevOpsCertication.co which has a lifelong validity.
    • There are no prerequisites for Masters in DevOps Program. As we are going to start all the concepts from scratch. Even, if any aspirant is planning to enter the IT world or DevOps this course will help them to get all the job-ready skills.

    DEVOPS CERTIFICATION


    What are the benefits of "Master in DevOps Engineering (MDE)" Certification?

    Certifications always play a crucial role in any profession. You may find some DevOps professional's, who will tell you that certifications do not hold much value; DevOps is about culture not any individual skillset or technology. They are right to some extent, but certifications are important or always nice-to-have in your resume.

    According to Payscale research reports, when employers takes interview of any prospective candidate they have one criteria in mind, How will this particualr candidate can add value to my organisation, particularly in comparision with others on the list? and having a professional certification from a reputed institute definitely tilt the scale in your favor.

    Certification serves as a testimonial of your skills, therefore it is important for you to get the necessary certifications.

    "Master in DevOps Engineering (MDE) Certification" - This is the only Certificaiton which makes you a certified professional in DevOps, DevSecOps and Site Reliablity Engineering (SRE).

    This Certification will help freshers to get into a JOB and expereinced professionals in their transition from other areas of IT into DevOps as a new job role.

    The demand for skilled professionals at DevOps, DevSecOps and SRE is on an all-time rise and you can take advantage of this opportunity to avail top positions at renowned organizations by acquiring the right skills and certifications and Master in DevOps Engineering Certification is perfectly fit for that.

    Almost 42% of companies all over the world want DevOps Engineer, Manager, or consultant in their workforce and 57% of companies want opensource experts with masters DevOps skills, but positions are not easily filled. The Master in DevOps Engineering certification proves the skills of certificate holder in DevOps, DevSecOp and SRE thereby guaranteeing a job opportunity for sure.

    Getting Certified in DevOps with DevSecOps and SRE skills can make you a valuable asset for your company and your desirable work profiles will definitely come to your way with excellent salary hikes.

    Masters certification in DevOps with DevSecOps and SRE concept is going to be a recession-free profile. It is here and would continue to be in demand for a long time to come. Reason? Companies wants to improve their software development and operational efficiencies at all costs.

    There are diverse job roles will be available for a Certified Master DevOps Engineer which includes infrastructure architects, automation architects, DevOps architect, and DevOps consultant, DevSecOps architects, Lead Site reliability engineer etc.

    How much does a Certified DevOps Engineers/Architects make?
    The average salary's are based on various research reports published in site like Glassdoor/PayScale/Salary/Neuvoo
    United States:- $175,000 - $201,825
    India (Median salary):- INR 18,00,000
    Australia:- AU$117,117 - $199,098
    Germany (Median salary):- €56,457
    London (Median salary):- £ 54,069

    View more

    FREQUENTLY ASKED QUESTIONS


    To maintain the quality of our live sessions, we allow limited number of participants. Therefore, unfortunately live session demo cannot be possible without enrollment confirmation. But if you want to get familiar with our training methodology and process or trainer's teaching style, you can request a pre recorded Training videos before attending a live class.

    Yes, after the training completion, participant will get one real-time scenario based project where they can impletement all their learnings and acquire real-world industry setup, skills, and practical knowledge which will help them to become industry-ready.

    All our trainers, instructors and faculty members are highly qualified professionals from the Industry and have at least 10-15 yrs of relevant experience in various domains like IT, Agile, SCM, B&R, DevOps Training, Consulting and mentoring. All of them has gone through our selection process which includes profile screening, technical evaluation, and a training demo before they onboard to led our sessions.

    No. But we help you to get prepared for the interviews and resume preparation as well. As there is a big demand for DevOps professionals, we help our participants to get ready for it by working on a real life projects and providing notifications through our "JOB updates" page and "Forum updates" where we update JOB requirements which we receive through emails/calls from different-different companies who are looking to hire trained professionals.

    The system requirements include Windows / Mac / Linux PC, Minimum 2GB RAM and 20 GB HDD Storage with Windows/CentOS/Redhat/Ubuntu/Fedora.

    All the Demo/Hands-on are to be executed by our trainers on DevOpsSchool's AWS cloud. We will provide you the step-wise guide to set up the LAB which will be used for doing the hands-on exercises, assignments, etc. Participants can practice by setting up the instances in AWS FREE tier account or they can use Virtual Machines (VMs) for practicals.

    • Google Pay/Phone pe/Paytm
    • NEFT or IMPS from all leading Banks
    • Debit card/Credit card
    • Xoom and Paypal (For USD Payments)
    • Through our website payment gateway

    Please email to contact@DevopsSchool.com

    You will never lose any lecture at DevOpsSchool. There are two options available: You can view the class presentation, notes and class recordings that are available for online viewing 24x7 through our Learning management system (LMS). You can attend the missed session, in any other live batch or in the next batch within 3 months. Please note that, access to the learning materials (including class recordings, presentations, notes, step-bystep-guide etc.)will be available to our participants for lifetime.

    Yes, Classroom training is available in Bangalore, Hyderabad, Chennai and Delhi location. Apart from these cities classroom session can be possible if the number of participants are 6 plus in that specific city.

    Location of the training depends on the cities. You can refer this page for locations:- Contact

    We use GoToMeeting platform to conduct our virtual sessions.

    DevOpsSchool provides "DevOps Certified Professional (DCP)" certificte accredited by DevOpsCertificaiton.co which is industry recognized and does holds high value. Particiapant will be awarded with the certificate on the basis of projects, assignments and evaluation test which they will get within and after the training duration.

    If you do not want to continue attend the session in that case we can not refund your money back. But, if you want to discontinue because of some genuine reason and wants to join back after some time then talk to our representative or drop an email for assistance.

    Our fees are very competitive. Having said that if the participants are in a group then following discounts can be possible based on the discussion with representative
    Two to Three students – 10% Flat discount
    Four to Six Student – 15% Flat discount
    Seven & More – 25% Flat Discount

    If you are reaching to us that means you have a genuine need of this training, but if you feel that the training does not fit to your expectation level, You may share your feedback with trainer and try to resolve the concern. We have no refund policy once the training is confirmed.

    You can know more about us on Web, Twitter, Facebook and linkedin and take your own decision. Also, you can email us to know more about us. We will call you back and help you more about the trusting DevOpsSchool for your online training.

    If the transaction occurs through the website payment gateway, the participant will receive an invoice via email automatically. In rest options, participant can drop an email or contact to our representative for invoice

    DEVOPS ONLINE TRAINING REVIEWS


    Avatar

    Abhinav Gupta, Pune

    (5.0)

    The training was very useful and interactive. Rajesh helped develop the confidence of all.


    Avatar

    Indrayani, India

    (5.0)

    Rajesh is very good trainer. Rajesh was able to resolve our queries and question effectively. We really liked the hands-on examples covered during this training program.


    Avatar

    Ravi Daur , Noida

    (5.0)

    Good training session about basic Devops concepts. Working session were also good, howeverproper query resolution was sometimes missed, maybe due to time constraint.


    Avatar

    Sumit Kulkarni, Software Engineer

    (5.0)

    Very well organized training, helped a lot to understand the DevOps concept and detailed related to various tools.Very helpful


    Avatar

    Vinayakumar, Project Manager, Bangalore

    (5.0)

    Thanks Rajesh, Training was good, Appreciate the knowledge you poses and displayed in the training.



    Avatar

    Abhinav Gupta, Pune

    (5.0)

    The training with DevOpsSchool was a good experience. Rajesh was very helping and clear with concepts. The only suggestion is to improve the course content.


    View more

    4.1
    Google Ratings
    4.1
    Videos Reviews
    4.1
    Facebook Ratings

    RELATED COURSE


    RELATED BLOGS


    OUR GALLERY


    DevOpsSchool
    Typically replies within an hour

    DevOpsSchool
    Hi there 👋

    How can I help you?
    ×
    Chat with Us

      DevOpsSchool is offering its industry recognized training and certifications programs for the professionals who are seeking to get certified for DevOps Certification, DevSecOps Certification, & SRE Certification. All these certification programs are designed for pursuing a higher quality education in the software domain and a job related to their field of study in information technology and security.