DevSecOps: Continuous Application Security

DevSecOps: Continuous Application Security
DevSecOps: Continuous Application Security
English | MP4 | AVC 1280×720 | AAC 48KHz 2ch | 0h 45m | 110 MB

With DevOps continuing to grow in prominence, modern businesses expect applications to be built with greater speed and efficiency than ever before. Even so, the importance of application security cannot be downplayed for the sake of a pressing deadline. In this course, learn how to build a continuous application security process that meshes with the faster-paced world of DevOps. Instructor Tim Chase describes DevSecOps and its impact on application security. Tim then explores tools and strategies for testing apps in an automated fashion, explaining how key tools can integrate with the DevOps workflow. He covers interactive application security testing, the different aspects of container security (and how they can be automated), continuous secret scanning, and more.

Topics include:

  • What is DevSecOps?
  • How application security is different with DevSecOps
  • Continuous static and dynamic testing
  • Continuously scanning to prevent leaking secrets
  • Continuous container security
  • Pulling security tools together with the Glue tool
Table of Contents

1 The rise of continuous application security
2 What you should know
3 What is DevSecOps
4 How is application security different
5 The key to DevSecOps is continuous
6 Continuous static testing
7 Continuous dynamic testing
8 Interactive application security testing
9 Continuous secret scanning
10 Continuous library security testing
11 Continuous container security
12 Continuous container security demo
13 Tying it all together
14 Managing the results
15 Next steps