- Module 1: Understand security in the Pipeline
- Plan to DevSecOps
- Integrate security tools like WhiteSource, Micro Focus, Checkmarx and Veracode with Azure DevOps
- Implement pipeline security
- Use Secure DevOps kit for Azure (AzSK)
- Module 2: Introduction to Azure Security Center
- Configure Azure Security Center
- Understand Azure policies
- Describe initiatives, resource locks and Azure Blueprints
- Work with Microsoft Defender for Identity
- Module 3: Implement open-source software
- Implement open-source software
- Explain corporate concerns for open-source components
- Describe open-source licenses
- Understand the license implications and ratings
- Module 4: Manage anti-malware and anti-spam policies
- Manage anti-malware and anti-spam policies
- Inspect and validate code bases for compliance
- Implement OWASP Security Coding Practices
- Understand compliance for code bases
- Module 5: Integrate license and vulnerability scans
- Implement security validation
- Work with SonarCloud
- Interpret alerts from scanner tools
- Configure GitHub Dependabot alerts and security
- Module 6: Identify technical debt
- Identify and manage technical debt
- Integrate code quality tools
- Plan code reviews
- Describe complexity and quality metrics
By the end of this module, you'll be able to:
By the end of this module, you'll be able to:
By the end of this module, you'll be able to:
By the end of this module, you'll be able to:
By the end of this module, you'll be able to:
