AWS Security- DevSecOps AWS Security Services Terraform
- IT & Software
- Dec 17, 2024
AWS Security: DevSecOps & AWS Security Services & Terraform, available at $89.99, has an average rating of 4.49, with 73 lectures, 5 quizzes, based on 551 reviews, and has 5854 subscribers.
You will learn about Learn DevSecOps implementation in AWS and various AWS Security Services Learn to implement End to End DevSecOps Pipeline in AWS that include SAST, DAST & SCA Learn AWS CodeBuild and integration with CodePipeline Learn AWS CodeCommit and connect with Git Bash Learn AWS IAM and assign inline policies to IAM roles Learn AWS Security and implementation of AWS Security services Learn to implement quality gates in AWS Code Pipeline using Sonar Learn to integrate Sonar and Snyk in AWS Code Pipeline Learn to create DevSecOps Engineer CV Learn to run automated scan on entire AWS Infrastructure using AQUA Learn to implement CSPM in AWS Learn to implement End to End DevSecOps pipeline within AWS Learn to create infrastructure using Terraform Learn to create AWS EKS(Kubernetes) cluster using eksctl This course is ideal for individuals who are Cloud Security Engineers or DevSecOps Engineers or AWS Security Engineers It is particularly useful for Cloud Security Engineers or DevSecOps Engineers or AWS Security Engineers.
Enroll now: AWS Security: DevSecOps & AWS Security Services & Terraform
Summary
Title: AWS Security: DevSecOps & AWS Security Services & Terraform
Price: $89.99
Average Rating: 4.49
Number of Lectures: 73
Number of Quizzes: 5
Number of Published Lectures: 72
Number of Published Quizzes: 5
Number of Curriculum Items: 79
Number of Published Curriculum Objects: 78
Original Price: $19.99
Quality Status: approved
Status: Live
What You Will Learn
Who Should Attend
Target Audiences
Course Updates:
v 10.0 – July2024
Added Assignment on End to End DevSecOps Project for Gradle with Solution
v 9.0 – May 2024
Added DevSecOps Handbook document in Section 10
v 8.0 – Nov 2023
Updated course with subtitles/captions for Chinese(Simplified), German, Spanish, Indonesian, French languages.
Updated course with lectures on Qualys TotalCloud CSPM
v 7.0 – Feb 2023
Updated course with videos on IAC security scan using Bridgecrew for Terraform code
v 6.0 – Jan 2023
Updated course with videos on AWS Infrastructure creation (EC2, Jenkins) using Terraform and EKS cluster using eksctl
v 5.0 – July 2022
Updated course with videos on End To End AWS DevSecOps Pipeline for a Java Project in Section 4
v 4.0 – June 2022
Updated course with notes on Docker Commands in Section 9
Updated course with notes on Kubernetes Commands in Section 9
Updated course with GitHub Repo for Sample Dockerfile in Section 9
Updated course with GitHub Repo for Sample Kubernetes Deployment file in Section 9
Update course with WAF Regular Expression Pattern Set Video lectures in Section 6
v 3.0 – May 2022
Updated course with newer videos on OWASP ZAP integration in AWS DevSecOps Pipeline to perform DAST in Section 3
Updated course with newer videos to store AWS Code Build Artifacts in S3 buckets and store DAST reports automatically in S3
Added new questions to Quizzes
v 2.0 – May 2022
Updated course with newer videos on AWS Cloud Security Posture Management and automatic config issue discovery in AWS
Added SCA in DevSecOps Pipeline
Added new questions to Quizzes
v 1.0 – April 2022
Updated course with newer videos on AWS Security Services
Added Quizzes to the course
Who shall take this course?
This AWS Security & AWS DevSecOps course is designed for Security Engineers, DevOps Engineers, SRE, QA Professionals and Freshers looking to find a job in the field of security. This is a focused AWS DevSecOps course with a special focus on integrating SAST/DAST/SCA tools in Build pipeline. This course also teaches to implement an End to End DevSecOps pipeline on AWS for a Java Project.
Learn and implement security in DevOps pipeline, get Hands On experience in using Security tools & technologies.
This course is for:
Developers
DevOps
Security Engineers
Aspiring professional in the Security domain
Quality Assurance Engineers
InfoSec/AppSec Professional
DevSecOps being the hot skill, will help you to secure a high-salaried job and stay informed on the latest market trends.
Why purchase this course?
This is only practical hands-on course available on the internet till now.
DevSecOps enables rapid application development with agility, at the same time it secures your application with automated security checks integrated within the pipeline. It helps to increase productivity and security by integrating security stages in the pipeline. Also, we have included practical examples to implement security in the DevOps pipeline through various tools. Before the end of the course, you will be able to successfully implement DevOps or DevSecOps pipeline and lead initiatives to create, build and maintain security pipelines in your project. No Action required before taking this course. For any question or concerns, Please post your comments on discussions tab
Disclaimer: All Language subtitles are corrected and auto-generated so please ignore any grammar mistakes. If you feel that any lecture subtitles are incorrect, please report the same. Thanks for understanding.
Course Curriculum
Chapter 1: Introduction
Lecture 1: Introduction and Course Agenda
Lecture 2: About the Course
Chapter 2: Deep Dive into DevSecOps
Lecture 1: Basic Security Terms – If new to security field
Lecture 2: What is DevSecOps?
Lecture 3: Tools used for DevSecOps Implementation in the market – Detailed discussion
Lecture 4: Tools used for DevSecOps in AWS
Chapter 3: Hands On – Integrating Security in AWS CI/CD Pipeline
Lecture 1: Create AWS Free Tier Account
Lecture 2: Install Git on Windows Machine
Lecture 3: Connect Git bash with AWS CodeCommit
Lecture 4: Push Vulnerable application code to AWS CodeCommit using Git Bash
Lecture 5: What is SonarCloud and its benefits?
Lecture 6: Add BuildSpec YAML file in the vulnerable application to integrate SonarCloud
Lecture 7: Create SonarCloud Project and update BuildSpec YAML file with SonarCloud values
Lecture 8: Create AWS Code Build project and run SAST analysis using SonarCloud
Lecture 9: Fix Code Coverage issues in SonarCloud for your Vulnerable application
Lecture 10: Move SonarCloud Security Token from Pipeline to AWS Secrets Manager
Lecture 11: Implement quality gates using Sonar
Lecture 12: Create AWS CodePipeline and automate the AWS CodeBuild project
Lecture 13: What is Snyk and its benefits?
Lecture 14: Snyk report issue with AWS Code Pipeline
Lecture 15: Integrate Snyk in AWS Code Pipeline
Lecture 16: What is OWASP ZAP and its benefits?
Lecture 17: Configure AWS Code Build to store security tools artifacts in S3 Buckets
Lecture 18: Integrate OWASP ZAP in AWS DevSecOps Pipeline using BuildSpec YAML
Chapter 4: Case Study: Implementing an End To End AWS DevSecOps Pipeline for a Java Project
Lecture 1: Case Study: Understanding Project Requirements before workflow implementation
Lecture 2: Hands On: Write code changes to integrate SAST, SCA & DAST in DevSecOps Pipeline
Lecture 3: Hands On: Execute End to End AWS DevSecOps Pipeline and review logs
Chapter 5: Assignment: Implement an End to End AWS DevSecOps pipeline for Gradle Project
Chapter 6: Report Security issues found during SAST, SCA & DAST scans in JIRA
Lecture 1: Hands On: Create JIRA account with Atlassian with custom JIRA site
Lecture 2: Hands On: Report SAST security issues in JIRA identified by SonarCloud
Lecture 3: Hands On: Report SCA security issues in JIRA identified by Snyk
Lecture 4: Hands On: Report DAST security issues in JIRA identified by OWASP ZAP
Lecture 5: Hands On: Integrate JIRA with SonarCloud to create tickets with one-click
Chapter 7: Security Services in AWS
Lecture 1: AWS Security Hub Basics
Lecture 2: Hands On: AWS Security Hub implementation
Lecture 3: Hands on: Amazon Inspector basics and implementation – Part 1
Lecture 4: Hands on: Amazon Inspector – Create Assessment using Classic Inspector – Part 2
Lecture 5: Hands on: Amazon Detective basics and implementation
Lecture 6: Guard duty basics and implementation
Lecture 7: Hands on: Review Guard duty findings and additional features
Lecture 8: Hands on: Amazon IAM access analyzer basics and implementation
Lecture 9: Hands on: Amazon Macie basics and implementation – Part 1
Lecture 10: Hands on: Amazon Macie basics and implementation – Part 2
Lecture 11: AWS Audit Manager Basics and Implementation
Lecture 12: Create assessment in AWS audit manager
Lecture 13: Hands On: Review results of all integrations performed with Security Hub
Lecture 14: Hands On: Implement WAF in AWS
Lecture 15: Hands On: Create Regular Expression Pattern Set in AWS WAF and assign it to ACL
Chapter 8: Learn to Create AWS Infra using Terraform for DevSecOps Interview and run IAC
Lecture 1: Download Terraform on Windows Machine and Configure PATH in windows machine
Lecture 2: Create AWS Admin User
Lecture 3: Install AWS CLI and Authenticate with AWS
Lecture 4: Install Visual Studio Code on Windows Machine
Lecture 5: Clone Terraform Repo On Local System
Lecture 6: Open the Terraform Repo in Visual Studio Code
Lecture 7: Understand Terraform Script to create AWS Infrastructure
Lecture 8: Understand shell script to install softwares on EC2 instance using Terraform
Lecture 9: Understand variables file in TF and create AWS Key pair to create EC2 using TF
Lecture 10: VPC Id for the infra creation
Lecture 11: Run Terraform Script to create AWS Infrastructure
Lecture 12: Create Kubernetes Cluster (EKS) using EKSCTL utility
Lecture 13: Cleanup resources created in the course using eksctl and Terraform
Lecture 14: Run IAC security scan with Bridgecrew
Chapter 9: Cloud Security and Posture Management with Qualys TotalCloud
Lecture 1: What is CSPM?
Lecture 2: Create an account with Qualys TotalCloud for running CSPM on AWS
Lecture 3: Scan AWS Infrastructure for Security Misconfiguration using Qualys Total Cloud
Chapter 10: Learn Docker and Kubernetes Commands for DevSecOps Interview
Lecture 1: Notes on Docker Commands
Lecture 2: Sample Dockerfile
Lecture 3: Notes on Kubernetes Commands
Lecture 4: Sample kubernetes Deployment file to deploy Docker container with load balancer
Chapter 11: Next Steps
Lecture 1: DevSecOps Handbook
Lecture 2: Application Security As a Career
Lecture 3: Sample DevSecOps Engineer CV
Lecture 4: Bonus Lecture
Instructors
Raghu The Security Expert
App Security | DevSecOps | Pen Test | Testing | Automation
Rating Distribution
Frequently Asked Questions
How long do I have access to the course materials?
You can view and review the lecture materials indefinitely, like an on-demand channel.
Can I take my courses with me wherever I go?
Definitely! If you have an internet connection, courses on Udemy are available on any device at any time. If you don’t have an internet connection, some instructors also let their students download course lectures. That’s up to the instructor though, so make sure you get on their good side!
- Random Picks
- Popular
- Hot Reviews
- The Millionaire Marketer- A Blueprint for Digital Wealth
- Advanced Photoshop Manipulations Tutorials Bundle
- Life Insurance Annuity Ultimate Buyer’s Guide
- Crypto Trading Mastery (Scalping, Day trading, price action)
- Personal Finance
- Company Valuation Financial Modeling
- The Beginner Forex Trading Playbook
- How to Draw Cute Thanksgiving!
- 1YouTube Masterclass The Best Guide to YouTube Success
- 2Python for Absolute Beginners
- 3ZB Trading Cryptocurrency Price Action Course
- 4Photoshop CC- Adjustement Layers, Blending Modes Masks
- 5NGRX angular nativescript
- 6Marketing Mix Modeling in one day for your Brand Analytics_1
- 7AS1 Tosca Practice for Interviews and new learners
- 8Top 10 Machine Learning Courses to Learn in November 2024
- 1Linux Performance Monitoring Analysis Hands On !!
- 2Content Writing Mastery 1- Content Writing For Beginners
- 3Media Training for PrintOnline Interviews-Get Great Quotes
- 4Learn Facebook Ads from Scratch Get more Leads and Sales
- 5The Complete Digital Marketing Course Learn From Scratch
- 6C#- Start programming with C# (for complete beginners)
- 7[FREE] How to code 10 times faster with Emmet
- 8Driving Results through Data Storytelling