| # | SDLC Problems | Solution |
|---|---|---|
| 1 | SDLC Models & Architecture with Agile, DevOps, SRE & DevSecOps, SOA & Micro services | Concept |
| 2 | Platform – Operating Systems | Centos/Ubuntu & VirtualBox & Vagrant |
| 3 | Platform – Cloud | AWS |
| 4 | Platform – Containers | Docker |
| 5 | Planning and Designing | Jira & Confulence |
| 6 | Backend Programming Language | App Dev with Python/Flask with mysql DB |
| 7 | Source Code Versioning | Git using Github |
| 8 | Code Analysis & Securing Code (SAST) | SonarQube & Coverity Scan & Snyk |
| 9 | Build Management | Maven and Gradle |
| 10 | Package Management | Packer & Artifactory |
| 11 | Unit Testing & Acceptance Testing & Coverage | Junit & Selenium & Jacoco & Jmeter |
| 12 | Configuration & Deployment Management | Ansible |
| 13 | Container Orchestration | Kubernetes & Helm Introduction |
| 14 | Infrastructure Coding | Terraform |
| 15 | Continuous Integration | Jenkins |
| 16 | Infrastructure Monitoring Tool | Datadog |
| 17 | Log Monitoring Tool | Splunk |
| 18 | Application Performance Monitoring | NewRelic |
| # | Security Problems | Solution |
|---|---|---|
| 18 | Threat Model & Tools | STRIDE / PASTA / VAST & Microsoft Threat Modeling Tool / OWASP Threat Dragon |
| 19 | Dynamic Application Security Testing (DAST) | OWASP ZAP (Zed Attack Proxy) / Skipfish / Nmap / OpenVAS by Greenbone / Fortify WebInspect |
| 20 | Software Composition Analysis (SCA) | OWASP Dependency Check / Jfrog Xray |
| 21 | Runtime application self-protection & Containers (RASP) | Falco / Notary / The Update Framework (TUF) / Nikto |
| 22 | Web Application Firewall (WAF) | AWS WAF / Azure Web Application Firewall / Cloudflare Web Application Firewall (WAF) |
| 23 | Securing Credentials | HashiCorp Vault & AWS Secrets Manager, Azure key vault, AWS KMS, Kubernetes Secrets |
| 24 | Policy-based control for cloud native environments | Open Policy Agent (OPA) |
| 25 | Cloud Security service & Practices | Cloud Security with AWS & Azure service |
| 26 | Security Information and Event Management SIEM | Splunk SIEM |
Mentor for DevOps - DevSecOps - SRE - Cloud - Container & Micorservices at Software AG
Join my following certification courses...
- DevOps Certified Professionals (DCP)
- Site Reliability Engineering Certified Professionals (SRECP)
- Master in DevOps Engineering (MDE)
- DevSecOps Certified Professionals (DSOCP)
URL - https://www.devopsschool.com/certification/
My Linkedin - https://www.linkedin.com/in/rajeshkumarin
- DevOps Certified Professionals (DCP)
- Site Reliability Engineering Certified Professionals (SRECP)
- Master in DevOps Engineering (MDE)
- DevSecOps Certified Professionals (DSOCP)
URL - https://www.devopsschool.com/certification/
My Linkedin - https://www.linkedin.com/in/rajeshkumarin
Latest posts by Rajesh Kumar (see all)
- Apache Lucene Query Example - April 8, 2024
- Google Cloud: Step by Step Tutorials for setting up Multi-cluster Ingress (MCI) - April 7, 2024
- What is Multi-cluster Ingress (MCI) - April 7, 2024
