SecDevOps Foundation (SDOF) Certification Training

Level: Intermediate

SecDevOps is an initiative to put cybersecurity first within the security, development, and operations teams, requiring change management involved in the System Engineering Life Cycle (SELC). This DOI-certified course addresses benefits, concepts, and vocabulary of SecDevOps and DevSecOps; how they evolved from Agile practices; and highlights differences between DevOps practices and other types of security approaches.

IN THE NEWS: Learning Tree Launches Exclusive, Fully Accredited SecDevOps Certification with DevOps Institute

Key Features of this SecDevOps Foundation Training:

  • Prepare for the DevOps Institute SecDevOps Foundation Certification with the world's first accredited SecDevOps certification course
  • After-course instructor coaching benefit
  • Certification from DevOps Institute

You Will Learn How To:

  • Explain the purpose, benefits, concepts and vocabulary of SecDevOps.
  • Differentiate DevOps security practices from other security approaches.
  • Trace the history and evolution of SecDevOps.
  • Focus on Business-driven security strategies.
  • Apply data and security science techniques.
  • Benefit from Security Testing with Red and Blue Teams.
  • Integrate security into Continuous Integration and Delivery workflows.
  • Integrate SecDevOps roles with a DevOps culture and organization.

Choose the Training Solution That Best Fits Your Individual Needs or Organizational Goals

LIVE, INSTRUCTOR-LED

In Class & Live, Online Training

  • 3-day instructor-led training course
  • After-course instructor coaching benefit
  • DevOps Institute certification exam included
View Course Details & Schedule

Standard $2745 CAD

Government $2415 CAD

RESERVE SEAT

PRODUCT #3695

TRAINING AT YOUR SITE

Team Training

  • Bring this or any training to your organization
  • Full - scale program development
  • Delivered when, where, and how you want it
  • Blended learning models
  • Tailored content
  • Expert team coaching

Customize Your Team Training Experience

CONTACT US

Save More On Training with FlexVouchers – A Unique Training Savings Account

Our FlexVouchers help you lock in your training budgets without having to commit to a traditional 1 voucher = 1 course classroom-only attendance. FlexVouchers expand your purchasing power to modern blended solutions and services that are completely customizable. For details, please call 888-843-8733 or chat live.

In Class & Live, Online Training

Time Zone Legend:
Eastern Time Zone Central Time Zone
Mountain Time Zone Pacific Time Zone

Note: This course runs for 3 Days

  • Aug 18 - 20 9:00 AM - 4:30 PM EDT Online (AnyWare) Online (AnyWare) Reserve Your Seat

  • Sep 15 - 17 9:00 AM - 4:30 PM EDT New York / Online (AnyWare) New York / Online (AnyWare) Reserve Your Seat

  • Oct 13 - 15 9:00 AM - 4:30 PM EDT Ottawa / Online (AnyWare) Ottawa / Online (AnyWare) Reserve Your Seat

  • Nov 17 - 19 9:00 AM - 4:30 PM EST Herndon, VA / Online (AnyWare) Herndon, VA / Online (AnyWare) Reserve Your Seat

  • Dec 15 - 17 9:00 AM - 4:30 PM EST New York / Online (AnyWare) New York / Online (AnyWare) Reserve Your Seat

  • Jan 12 - 14 9:00 AM - 4:30 PM EST Ottawa / Online (AnyWare) Ottawa / Online (AnyWare) Reserve Your Seat

  • Feb 16 - 18 9:00 AM - 4:30 PM EST Herndon, VA / Online (AnyWare) Herndon, VA / Online (AnyWare) Reserve Your Seat

  • Mar 16 - 18 9:00 AM - 4:30 PM EDT New York / Online (AnyWare) New York / Online (AnyWare) Reserve Your Seat

  • Apr 12 - 14 9:00 AM - 4:30 PM EDT Ottawa / Online (AnyWare) Ottawa / Online (AnyWare) Reserve Your Seat

  • May 18 - 20 9:00 AM - 4:30 PM EDT Herndon, VA / Online (AnyWare) Herndon, VA / Online (AnyWare) Reserve Your Seat

  • Jun 15 - 17 9:00 AM - 4:30 PM EDT New York / Online (AnyWare) New York / Online (AnyWare) Reserve Your Seat

Guaranteed to Run

When you see the "Guaranteed to Run" icon next to a course event, you can rest assured that your course event — date, time — will run. Guaranteed.

Important SecDevOps Foundation Training Information

  • Who Should Attend this Course

    Software Developers/Tester, Release Manager, Automation Architects, XA Professional, Security Engineer, System Administrators.

  • Certification Information

    • The exam is taken in-class and is included in the course tuition.
    • The exam is open book and is 60 minutes in duration.
    • It is highly recommended that candidates attend the SecDevOps Foundation course with a DevOps Institute accredited Education Partner to prepare for the certification exam.
    • Exam administered through DOI leading to Certification.

SecDevOps Foundation Training Outline

  • Agile/DevOps Foundation Review

    • What is Agile/DevOps?
    • DevOps Goals
    • DevOps Values
    • DevOps Stakeholders
  • Why SecDevOps?

    • Key Terms and Concepts.
    • Why SecDevOps is important.
    • 3 Ways to Think About DevOps + Security.
    • Key Principles of SecDevOps
    • SecDevOps security-first philosophy.
    • SecDevOps evolution from DevSecOps.
  • Culture and Management

    • Key Terms and Concepts
    • Incentive Model
    • Resilience
    • Organizational Culture
    • Generativity
    • Erickson, Westrum, and LaLoux
  • Strategic Considerations

    • Key Terms and Concepts.
    • How Much Security is Enough?
    • Threat Modeling.
    • Context is Everything.
    • Risk Management in a High-velocity World.
    • Team Security Profiling
  • General Security Considerations

    • Avoiding the Checkbox Trap
    • Basic Security Hygiene
    • Architectural Considerations
    • Federated Identity
    • Log Management
  • Feature and Security Workflow

    • Configuration Management
    • Centralized Workflow
    • Workflow Branch Classifications
    • Pre and post commit
    • Deployment and Release Orchestration
  • Acquisition Lifecycle Security

    • Needs Phase requirements vs. security.
    • Acquisition Review Board (ARB)
    • Analyze/Select Phase measurement metrics.
    • Obtain Phase Life Cycle
    • Planning and Scheduling
    • Dispose Phase Concerns
  • Identity and Access Management (IAM)

    • Key Terms and Concepts
    • IAM Basic Concepts
    • Why IAM is Important
    • Implementation Guidance
    • Automation Opportunities
    • How to Hurt Yourself with IAM
  • Application Security

    • Application Security Testing (AST)
    • Testing Techniques
    • Prioritizing Testing Techniques
    • Issue Management Integration
    • Threat Monitoring
    • Leveraging Automation
    • Secure Coding and OWASP compliance
  • Operational Security

    • Key Terms and Concepts
    • Basic Security Hygiene Practices
    • Role of Operations Management
    • The Ops Environment
    • Embracing Fail-Early, Fail-First
    • Security infrastructure as code
  • Cross-Team Security

    • Key Terms and Concepts
    • Establishing Trust
    • Promoting Shared Responsibility
    • Team Verification Techniques
    • Embedded Point-of-Contact
    • Security, Development and Operations Sprints
  • Roles and Responsibilities

    • SecDevOps Coach
    • Product Owner Expanded Responsibilities
    • Program and Project Manager
    • Information System Security Officer (ISSO)
    • SecDevOps Engineer
    • Site Reliability Engineer
  • Governance, Risk, Compliance (GRC) Audit

    • Key Terms and Concepts
    • What is GRC?
    • Why Care About GRC?
    • Rethinking Policies
    • Policy as Code
    • Shifting Audit Left
    • 3 Myths of Segregation of Duties vs. DevOps
  • Logging, Monitoring and Response

    • Key Terms and Concepts
    • Setting Up Log Management
    • Incident Response and Forensics
    • Threat Intelligence and Information Sharing
  • Continual Improvement

    • Retrospectives
    • Continuous Learning
    • Open Collaboration (including security)
    • Shared intelligence
  • Review and Summary

    • Exam Review
    • Key course concepts
    • Next steps

Team Training

SecDevOps Foundation Training FAQs

  • How is this course different from DevSecOps?

    SecDevOps is an initiative to put cybersecurity first, along with extensions that aim to ensure optimum security throughout all phases of the software life cycle, within the cybersecurity, development, and operations teams.

Online (AnyWare)
New York / Online (AnyWare)
Ottawa / Online (AnyWare)
Herndon, VA / Online (AnyWare)
New York / Online (AnyWare)
Ottawa / Online (AnyWare)
Herndon, VA / Online (AnyWare)
New York / Online (AnyWare)
Ottawa / Online (AnyWare)
Herndon, VA / Online (AnyWare)
New York / Online (AnyWare)
Why do we require your location?

It allows us to direct your request to the appropriate Customer Care team.

Preferred method of contact:
Chat Now

Please Choose a Language

Canada - English

Canada - Français