Simple play icon Course
Skills

Enabling Security Governance and Compliance in DevSecOps

by Richard Harpur

This course will teach you the importance of strong Security Governance and Compliance. Learn to leverage DevSecOps pipelines for automatic compliance using “Compliance as Code," a critical part of modern cloud strategy to demonstrate Governance.

What you'll learn

In an ever-changing world security is key. Cloud environments present interesting challenges when it comes to building a strong security infrastructure. In this course, Enabling Security Governance and Compliance in DevSecOps, you’ll learn to how to achieve strong security governance and compliance using DevSecOps. First, you’ll explore why strong governance is essential for all modern environments, in particular cloud environments. Next, you’ll discover the distinction between governance and compliance, and why you need both to be successful. Then, you’ll learn how to utilize you existing DevSecOps pipelines to enable strong governance and compliance practices. Finally, you’ll learn how you can achieve automated security compliance using “Security as Code” in your pipelines. When you’re finished with this course, you’ll have the skills and knowledge of Security Governance and Compliance needed to demonstrate how your DevSecOps pipeline can support this critical requirement.

Course FAQ

What will you learn in this DevSecOps course?

In this course, you will learn the major approaches to enabling security governance and compliance, why we need governance and compliance and what the differences between the two are, best practices for using both governance and compliance, and other tools that you should consider implementing.

What are the benefits of security compliance?

Some benefits of security compliance are: avoiding fines and penalties, protects business reputation, data management enhancements, additional insights with operational benefits.

What is data governance?

Data governance is the process of managing the availability, usability, integrity, and security of the data in enterprise systems, based on internal data standards and policies that also control data usage.

What is a DevSecOps pipeline?

A DevSecOps pipeline is a set of security practices incorporated into your software development life cycle to build, test, and deploy secure software faster and easier.

What is a CSP?

A CSP is a Cloud Solution Provider that can enable their customers to pay for Azure Devops by using a CSP-based Azure Subscription.

About the author

Richard is a highly experienced technology leader with a remarkable career ranging from software development, project management through to C-level roles as CEO, CIO, and CISO. Richard is highly rated and ranked in Ireland's top 100 CIOs. As an author for Pluralsight - a leader in online training for technology professionals - Richard's courses are highly-rated in the Pluralsight library and focus on teaching critical skills in cybersecurity including ISO27001 and Ransomware. As a Certified Info... more

Ready to upskill? Get started