AWS Security: DevSecOps & AWS Security Services & Terraform

AWS Security: DevSecOps & AWS Security Services & Terraform, available at $89.99, has an average rating of 4.49, with 73 lectures, 5 quizzes, based on 551 reviews, and has 5854 subscribers.

You will learn about Learn DevSecOps implementation in AWS and various AWS Security Services Learn to implement End to End DevSecOps Pipeline in AWS that include SAST, DAST & SCA Learn AWS CodeBuild and integration with CodePipeline Learn AWS CodeCommit and connect with Git Bash Learn AWS IAM and assign inline policies to IAM roles Learn AWS Security and implementation of AWS Security services Learn to implement quality gates in AWS Code Pipeline using Sonar Learn to integrate Sonar and Snyk in AWS Code Pipeline Learn to create DevSecOps Engineer CV Learn to run automated scan on entire AWS Infrastructure using AQUA Learn to implement CSPM in AWS Learn to implement End to End DevSecOps pipeline within AWS Learn to create infrastructure using Terraform Learn to create AWS EKS(Kubernetes) cluster using eksctl This course is ideal for individuals who are Cloud Security Engineers or DevSecOps Engineers or AWS Security Engineers It is particularly useful for Cloud Security Engineers or DevSecOps Engineers or AWS Security Engineers.

Enroll now: AWS Security: DevSecOps & AWS Security Services & Terraform

Summary

Title: AWS Security: DevSecOps & AWS Security Services & Terraform

Price: $89.99

Average Rating: 4.49

Number of Lectures: 73

Number of Quizzes: 5

Number of Published Lectures: 72

Number of Published Quizzes: 5

Number of Curriculum Items: 79

Number of Published Curriculum Objects: 78

Original Price: $19.99

Quality Status: approved

Status: Live

What You Will Learn

Learn DevSecOps implementation in AWS and various AWS Security Services
Learn to implement End to End DevSecOps Pipeline in AWS that include SAST, DAST & SCA
Learn AWS CodeBuild and integration with CodePipeline
Learn AWS CodeCommit and connect with Git Bash
Learn AWS IAM and assign inline policies to IAM roles
Learn AWS Security and implementation of AWS Security services
Learn to implement quality gates in AWS Code Pipeline using Sonar
Learn to integrate Sonar and Snyk in AWS Code Pipeline
Learn to create DevSecOps Engineer CV
Learn to run automated scan on entire AWS Infrastructure using AQUA
Learn to implement CSPM in AWS
Learn to implement End to End DevSecOps pipeline within AWS
Learn to create infrastructure using Terraform
Learn to create AWS EKS(Kubernetes) cluster using eksctl

Who Should Attend

Cloud Security Engineers
DevSecOps Engineers
AWS Security Engineers

Target Audiences

Cloud Security Engineers
DevSecOps Engineers
AWS Security Engineers

Course Updates:

v 10.0 – July2024

Added Assignment on End to End DevSecOps Project for Gradle with Solution

v 9.0 – May 2024

Added DevSecOps Handbook document in Section 10

v 8.0 – Nov 2023

Updated course with subtitles/captions for Chinese(Simplified), German, Spanish, Indonesian, French languages.
Updated course with lectures on Qualys TotalCloud CSPM

v 7.0 – Feb 2023

Updated course with videos on IAC security scan using Bridgecrew for Terraform code

v 6.0 – Jan 2023

Updated course with videos on AWS Infrastructure creation (EC2, Jenkins) using Terraform and EKS cluster using eksctl

v 5.0 – July 2022

Updated course with videos on End To End AWS DevSecOps Pipeline for a Java Project in Section 4

v 4.0 – June 2022

Updated course with notes on Docker Commands in Section 9
Updated course with notes on Kubernetes Commands in Section 9
Updated course with GitHub Repo for Sample Dockerfile in Section 9
Updated course with GitHub Repo for Sample Kubernetes Deployment file in Section 9
Update course with WAF Regular Expression Pattern Set Video lectures in Section 6

v 3.0 – May 2022

Updated course with newer videos on OWASP ZAP integration in AWS DevSecOps Pipeline to perform DAST in Section 3
Updated course with newer videos to store AWS Code Build Artifacts in S3 buckets and store DAST reports automatically in S3
Added new questions to Quizzes

v 2.0 – May 2022

Updated course with newer videos on AWS Cloud Security Posture Management and automatic config issue discovery in AWS
Added SCA in DevSecOps Pipeline
Added new questions to Quizzes

v 1.0 – April 2022

Updated course with newer videos on AWS Security Services
Added Quizzes to the course

Who shall take this course?

This AWS Security & AWS DevSecOps course is designed for Security Engineers, DevOps Engineers, SRE, QA Professionals and Freshers looking to find a job in the field of security. This is a focused AWS DevSecOps course with a special focus on integrating SAST/DAST/SCA tools in Build pipeline. This course also teaches to implement an End to End DevSecOps pipeline on AWS for a Java Project.

Learn and implement security in DevOps pipeline, get Hands On experience in using Security tools & technologies.

This course is for:

Developers
DevOps
Security Engineers
Aspiring professional in the Security domain
Quality Assurance Engineers
InfoSec/AppSec Professional

DevSecOps being the hot skill, will help you to secure a high-salaried job and stay informed on the latest market trends.

Why purchase this course?

This is only practical hands-on course available on the internet till now.

DevSecOps enables rapid application development with agility, at the same time it secures your application with automated security checks integrated within the pipeline. It helps to increase productivity and security by integrating security stages in the pipeline. Also, we have included practical examples to implement security in the DevOps pipeline through various tools. Before the end of the course, you will be able to successfully implement DevOps or DevSecOps pipeline and lead initiatives to create, build and maintain security pipelines in your project. No Action required before taking this course. For any question or concerns, Please post your comments on discussions tab

Disclaimer: All Language subtitles are corrected and auto-generated so please ignore any grammar mistakes. If you feel that any lecture subtitles are incorrect, please report the same. Thanks for understanding.

Course Curriculum

Chapter 1: Introduction

Lecture 1: Introduction and Course Agenda

Lecture 2: About the Course

Chapter 2: Deep Dive into DevSecOps

Lecture 1: Basic Security Terms – If new to security field

Lecture 2: What is DevSecOps?

Lecture 3: Tools used for DevSecOps Implementation in the market – Detailed discussion

Lecture 4: Tools used for DevSecOps in AWS

Chapter 3: Hands On – Integrating Security in AWS CI/CD Pipeline

Lecture 1: Create AWS Free Tier Account

Lecture 2: Install Git on Windows Machine

Lecture 3: Connect Git bash with AWS CodeCommit

Lecture 4: Push Vulnerable application code to AWS CodeCommit using Git Bash

Lecture 5: What is SonarCloud and its benefits?

Lecture 6: Add BuildSpec YAML file in the vulnerable application to integrate SonarCloud

Lecture 7: Create SonarCloud Project and update BuildSpec YAML file with SonarCloud values

Lecture 8: Create AWS Code Build project and run SAST analysis using SonarCloud

Lecture 9: Fix Code Coverage issues in SonarCloud for your Vulnerable application

Lecture 10: Move SonarCloud Security Token from Pipeline to AWS Secrets Manager

Lecture 11: Implement quality gates using Sonar

Lecture 12: Create AWS CodePipeline and automate the AWS CodeBuild project

Lecture 13: What is Snyk and its benefits?

Lecture 14: Snyk report issue with AWS Code Pipeline

Lecture 15: Integrate Snyk in AWS Code Pipeline

Lecture 16: What is OWASP ZAP and its benefits?

Lecture 17: Configure AWS Code Build to store security tools artifacts in S3 Buckets

Lecture 18: Integrate OWASP ZAP in AWS DevSecOps Pipeline using BuildSpec YAML

Chapter 4: Case Study: Implementing an End To End AWS DevSecOps Pipeline for a Java Project

Lecture 1: Case Study: Understanding Project Requirements before workflow implementation

Lecture 2: Hands On: Write code changes to integrate SAST, SCA & DAST in DevSecOps Pipeline

Lecture 3: Hands On: Execute End to End AWS DevSecOps Pipeline and review logs

Chapter 5: Assignment: Implement an End to End AWS DevSecOps pipeline for Gradle Project

Chapter 6: Report Security issues found during SAST, SCA & DAST scans in JIRA

Lecture 1: Hands On: Create JIRA account with Atlassian with custom JIRA site

Lecture 2: Hands On: Report SAST security issues in JIRA identified by SonarCloud

Lecture 3: Hands On: Report SCA security issues in JIRA identified by Snyk

Lecture 4: Hands On: Report DAST security issues in JIRA identified by OWASP ZAP

Lecture 5: Hands On: Integrate JIRA with SonarCloud to create tickets with one-click

Chapter 7: Security Services in AWS

Lecture 1: AWS Security Hub Basics

Lecture 2: Hands On: AWS Security Hub implementation

Lecture 3: Hands on: Amazon Inspector basics and implementation – Part 1

Lecture 4: Hands on: Amazon Inspector – Create Assessment using Classic Inspector – Part 2

Lecture 5: Hands on: Amazon Detective basics and implementation

Lecture 6: Guard duty basics and implementation

Lecture 7: Hands on: Review Guard duty findings and additional features

Lecture 8: Hands on: Amazon IAM access analyzer basics and implementation

Lecture 9: Hands on: Amazon Macie basics and implementation – Part 1

Lecture 10: Hands on: Amazon Macie basics and implementation – Part 2

Lecture 11: AWS Audit Manager Basics and Implementation

Lecture 12: Create assessment in AWS audit manager

Lecture 13: Hands On: Review results of all integrations performed with Security Hub

Lecture 14: Hands On: Implement WAF in AWS

Lecture 15: Hands On: Create Regular Expression Pattern Set in AWS WAF and assign it to ACL

Chapter 8: Learn to Create AWS Infra using Terraform for DevSecOps Interview and run IAC

Lecture 1: Download Terraform on Windows Machine and Configure PATH in windows machine

Lecture 2: Create AWS Admin User

Lecture 3: Install AWS CLI and Authenticate with AWS

Lecture 4: Install Visual Studio Code on Windows Machine

Lecture 5: Clone Terraform Repo On Local System

Lecture 6: Open the Terraform Repo in Visual Studio Code

Lecture 7: Understand Terraform Script to create AWS Infrastructure

Lecture 8: Understand shell script to install softwares on EC2 instance using Terraform

Lecture 9: Understand variables file in TF and create AWS Key pair to create EC2 using TF

Lecture 10: VPC Id for the infra creation

Lecture 11: Run Terraform Script to create AWS Infrastructure

Lecture 12: Create Kubernetes Cluster (EKS) using EKSCTL utility

Lecture 13: Cleanup resources created in the course using eksctl and Terraform

Lecture 14: Run IAC security scan with Bridgecrew

Chapter 9: Cloud Security and Posture Management with Qualys TotalCloud

Lecture 1: What is CSPM?

Lecture 2: Create an account with Qualys TotalCloud for running CSPM on AWS

Lecture 3: Scan AWS Infrastructure for Security Misconfiguration using Qualys Total Cloud

Chapter 10: Learn Docker and Kubernetes Commands for DevSecOps Interview

Lecture 1: Notes on Docker Commands

Lecture 2: Sample Dockerfile

Lecture 3: Notes on Kubernetes Commands

Lecture 4: Sample kubernetes Deployment file to deploy Docker container with load balancer

Chapter 11: Next Steps

Lecture 1: DevSecOps Handbook

Lecture 2: Application Security As a Career

Lecture 3: Sample DevSecOps Engineer CV

Lecture 4: Bonus Lecture

Instructors

Raghu The Security Expert
App Security | DevSecOps | Pen Test | Testing | Automation

Rating Distribution

1 stars: 8 votes
2 stars: 10 votes
3 stars: 59 votes
4 stars: 174 votes
5 stars: 300 votes

Frequently Asked Questions

How long do I have access to the course materials?

You can view and review the lecture materials indefinitely, like an on-demand channel.

Can I take my courses with me wherever I go?

Definitely! If you have an internet connection, courses on Udemy are available on any device at any time. If you don’t have an internet connection, some instructors also let their students download course lectures. That’s up to the instructor though, so make sure you get on their good side!

Menu