DevSecOps & Threat Modeling Bootcamp

Question & Answer

Question

DevSecOps Bootcamp badge logo

DevSecOps & Threat Modeling Bootcamp Badge

Badge earners understand the value of threat modeling as a foundation of shifting left security in the software development life cycle (SDLC) and how the technique can be applied in conjunction with agile delivery methods (DevSecOps). Further, badge earners understand threats to containerized applications and underlying orchestrators (OpenShift) according to reference standards (NIST SP 800-190). They know how to protect against those threats and secure the software supply chain using native mechanisms (RBAC, SCC), commercial (Red Hat Advanced Cluster Security for Kubernetes) and open-source (SonarQube, Dependency Check, Dependency Track, Zap) tools as quality gates in automation (CI/CD) tooling (Tekton Pipelines, Helm). They can identify and track security issues within a containerized application’s source code (SAST), dependencies (SCA), runtime test (DAST), base image and build image (vulnerability scanning), prior to deployment. By applying admission control and security policies, they can identify, alert and prevent undesired and potentially harmful behavior at runtime.

Duration: 1 Hour
Follow the link in related information to view the course on the IBM Security Learning Academy

Answer

The Security Learning Academy is a full service learning platform, providing various training objects and instruction options.

Related Information

Click here to view this course on the IBM Security Learning Academy

[{"Business Unit":{"code":"BU008","label":"Security"},"Product":{"code":"SSNCR1","label":"Non-product education"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"All Version","Edition":" "}]

Tips

DevSecOps & Threat Modeling Bootcamp

Question & Answer

Question

Answer

Related Information

Was this topic helpful?

Document Information

UID

Share your feedback

Need support?