MDE (4 Months) = DevOps + SRE + DevSecOps
DevOps Certified Professional (DCP) Curriculum (2 Months)
| # | SDLC Problems | Solution |
|---|---|---|
| 1 | SDLC Models & Architecture with Agile, DevOps, SRE & DevSecOps, SOA & Micro services | Concept |
| 2 | Platform – Operating Systems | Centos/Ubuntu & VirtualBox & Vagrant |
| 3 | Platform – Cloud | AWS |
| 4 | Platform – Containers | Docker |
| 5 | Planning and Designing | Jira & Confulence |
| 6 | Backend Programming Language | App Dev with Python/Flask with mysql DB |
| 7 | Source Code Versioning | Git using Github |
| 8 | Code Analysis & Securing Code (SAST) | SonarQube & Coverity Scan & Snyk |
| 9 | Build Management | Maven and Gradle |
| 10 | Package Management | Packer & Artifactory |
| 11 | Unit Testing & Acceptance Testing & Coverage | Junit & Selenium & Jacoco & Jmeter |
| 12 | Configuration & Deployment Management | Ansible |
| 13 | Container Orchestration | Kubernetes & Helm Introduction |
| 14 | Infrastructure Coding | Terraform |
| 15 | Continuous Integration | Jenkins |
| 16 | Infrastructure Monitoring Tool | Datadog |
| 17 | Log Monitoring Tool | Splunk |
| 18 | Application Performance Monitoring | NewRelic |
SRE Certified Professional (SRECP) Curriculum ( 3 Months)
| # | Security Problems | Solution |
|---|---|---|
| 18 | Threat Model & Tools | STRIDE / PASTA / VAST & Microsoft Threat Modeling Tool / OWASP Threat Dragon |
| 19 | Dynamic Application Security Testing (DAST) | OWASP ZAP (Zed Attack Proxy) / Skipfish / Nmap / OpenVAS by Greenbone / Fortify WebInspect |
| 20 | Software Composition Analysis (SCA) | OWASP Dependency Check / Jfrog Xray |
| 21 | Runtime application self-protection & Containers (RASP) | Falco / Notary / The Update Framework (TUF) / Nikto |
| 22 | Web Application Firewall (WAF) | AWS WAF / Azure Web Application Firewall / Cloudflare Web Application Firewall (WAF) |
| 23 | Securing Credentials | HashiCorp Vault & AWS Secrets Manager, Azure key vault, AWS KMS, Kubernetes Secrets |
| 24 | Policy-based control for cloud native environments | Open Policy Agent (OPA) |
| 25 | Cloud Security service & Practices | Cloud Security with AWS & Azure service |
| 26 | Security Information and Event Management SIEM | Splunk SIEM |
DevSecOps Certified Professional (DSOCP) Curriculum ( 3 Months)
| # | Security Problems | Solution |
|---|---|---|
| 27 | Threat Model & Tools | STRIDE / PASTA / VAST & Microsoft Threat Modeling Tool / OWASP Threat Dragon |
| 28 | Dynamic Application Security Testing (DAST) | OWASP ZAP (Zed Attack Proxy) / Skipfish / Nmap / OpenVAS by Greenbone / Fortify WebInspect |
| 29 | Software Composition Analysis (SCA) | OWASP Dependency Check / Jfrog Xray |
| 30 | Runtime application self-protection & Containers (RASP) | Falco / Notary / The Update Framework (TUF) / Nikto |
| 31 | Web Application Firewall (WAF) | AWS WAF / Azure Web Application Firewall / Cloudflare Web Application Firewall (WAF) |
| 32 | Securing Credentials | HashiCorp Vault & AWS Secrets Manager, Azure key vault, AWS KMS, Kubernetes Secrets |
| 33 | Policy-based control for cloud native environments | Open Policy Agent (OPA) |
| 34 | Cloud Security service & Practices | Cloud Security with AWS & Azure service |
| 35 | Security Information and Event Management SIEM | Splunk SIEM |
I’m a DevOps/SRE/DevSecOps/Cloud Expert passionate about sharing knowledge and experiences. I am working at Cotocus. I blog tech insights at DevOps School, travel stories at Holiday Landmark, stock market tips at Stocks Mantra, health and fitness guidance at My Medic Plus, product reviews at I reviewed , and SEO strategies at Wizbrand.
Please find my social handles as below;
Rajesh Kumar Personal Website
Rajesh Kumar at YOUTUBE
Rajesh Kumar at INSTAGRAM
Rajesh Kumar at X
Rajesh Kumar at FACEBOOK
Rajesh Kumar at LINKEDIN
Rajesh Kumar at PINTEREST
Rajesh Kumar at QUORA
Rajesh Kumar at WIZBRAND
SRE Certified Professional (SRECP) Curriculum & DevSecOps Certified Professional (DSOCP) Curriculum both has the same topics listed. Is this correct?