MDE (4 Months) = DevOps + SRE + DevSecOps
DevOps Certified Professional (DCP) Curriculum (2 Months)
# | SDLC Problems | Solution |
---|---|---|
1 | SDLC Models & Architecture with Agile, DevOps, SRE & DevSecOps, SOA & Micro services | Concept |
2 | Platform – Operating Systems | Centos/Ubuntu & VirtualBox & Vagrant |
3 | Platform – Cloud | AWS |
4 | Platform – Containers | Docker |
5 | Planning and Designing | Jira & Confulence |
6 | Backend Programming Language | App Dev with Python/Flask with mysql DB |
7 | Source Code Versioning | Git using Github |
8 | Code Analysis & Securing Code (SAST) | SonarQube & Coverity Scan & Snyk |
9 | Build Management | Maven and Gradle |
10 | Package Management | Packer & Artifactory |
11 | Unit Testing & Acceptance Testing & Coverage | Junit & Selenium & Jacoco & Jmeter |
12 | Configuration & Deployment Management | Ansible |
13 | Container Orchestration | Kubernetes & Helm Introduction |
14 | Infrastructure Coding | Terraform |
15 | Continuous Integration | Jenkins |
16 | Infrastructure Monitoring Tool | Datadog |
17 | Log Monitoring Tool | Splunk |
18 | Application Performance Monitoring | NewRelic |
SRE Certified Professional (SRECP) Curriculum ( 3 Months)
# | Security Problems | Solution |
---|---|---|
18 | Threat Model & Tools | STRIDE / PASTA / VAST & Microsoft Threat Modeling Tool / OWASP Threat Dragon |
19 | Dynamic Application Security Testing (DAST) | OWASP ZAP (Zed Attack Proxy) / Skipfish / Nmap / OpenVAS by Greenbone / Fortify WebInspect |
20 | Software Composition Analysis (SCA) | OWASP Dependency Check / Jfrog Xray |
21 | Runtime application self-protection & Containers (RASP) | Falco / Notary / The Update Framework (TUF) / Nikto |
22 | Web Application Firewall (WAF) | AWS WAF / Azure Web Application Firewall / Cloudflare Web Application Firewall (WAF) |
23 | Securing Credentials | HashiCorp Vault & AWS Secrets Manager, Azure key vault, AWS KMS, Kubernetes Secrets |
24 | Policy-based control for cloud native environments | Open Policy Agent (OPA) |
25 | Cloud Security service & Practices | Cloud Security with AWS & Azure service |
26 | Security Information and Event Management SIEM | Splunk SIEM |
DevSecOps Certified Professional (DSOCP) Curriculum ( 3 Months)
# | Security Problems | Solution |
---|---|---|
27 | Threat Model & Tools | STRIDE / PASTA / VAST & Microsoft Threat Modeling Tool / OWASP Threat Dragon |
28 | Dynamic Application Security Testing (DAST) | OWASP ZAP (Zed Attack Proxy) / Skipfish / Nmap / OpenVAS by Greenbone / Fortify WebInspect |
29 | Software Composition Analysis (SCA) | OWASP Dependency Check / Jfrog Xray |
30 | Runtime application self-protection & Containers (RASP) | Falco / Notary / The Update Framework (TUF) / Nikto |
31 | Web Application Firewall (WAF) | AWS WAF / Azure Web Application Firewall / Cloudflare Web Application Firewall (WAF) |
32 | Securing Credentials | HashiCorp Vault & AWS Secrets Manager, Azure key vault, AWS KMS, Kubernetes Secrets |
33 | Policy-based control for cloud native environments | Open Policy Agent (OPA) |
34 | Cloud Security service & Practices | Cloud Security with AWS & Azure service |
35 | Security Information and Event Management SIEM | Splunk SIEM |
Latest posts by Rajesh Kumar (see all)
- Appdynamics Demo Video - December 6, 2024
- PyTorch Lab – 9 – Pytorch CUDA Semantics - December 6, 2024
- PyTorch Lab – 8 – Pytorch Install And Setup Tensorflow Hidden Layer - December 6, 2024
SRE Certified Professional (SRECP) Curriculum & DevSecOps Certified Professional (DSOCP) Curriculum both has the same topics listed. Is this correct?