Episode
DevSecOps on Azure
with April Edwards, Gitte Vermeiren
Security is for everyone! The question is, where do you get started? Join April and Gitte as they talk about how to implement DevSecOps and ALL of the resources to help you integrate security into Azure and your CI/CD deployments.
Chapters
- 00:00 - Course Overview
- 01:20 - Intro to DevSecOps
- 09:20 - Plan and Develop your code with Security Tooling
- 21:51 - Embed Security into Every Code Commit
- 40:50 - Build and Test Your Code with Security Tooling
- 59:33 - Secure Your Production Environments
- 01:02:40 - Operate and Monitor Your Environments
- 01:03:02 - End to End Security Modeling
Recommended resources
- Plan and Develop: Threat Modeling, IDE Security Plugins, Secure Coding Standards, and Peer Review
- Embedding Security in your Code Commit: Secure Pipelines, OWASP, Dependency Management, and Application Security Testing
- Build and Test Your Code: Infrastructure Scanning, Security Acceptance Testing, and Dynamic Application Security Testing
- Send to Production: Configuration Checks, Live Site Penetration Testing, and Security Smoke Tests
- Operate and Monitoring: Continuous Monitoring, Threat Intelligence, Penetration Testing and Blameless Postmortems
- End to End Control of your Security Model: DevSecOps in Azure DevOps, DevSecOps in GitHub, and DevSecOps in AKS
- GitHub Repo containing all of our code
- Azure Architecture Center
- Become a Microsoft Sentinel Ninja
- Learn Azure Policy
- AZ-400 Learning Path
- Intro to DevOps Practices Learning Path
- Intro to Azure DevOps Learning Path
Related episodes
- Check out new episodes every week on Microsoft Learn
- Please like and subscribe | YouTube
- Managed Identity Series: Includes Identity and DevOps, Secretless Apps and so much more!
Connect
- April Edwards | Twitter: @TheAprilEdwards | LinkedIn: in/azureapril
- Gitte Vermeiren | Twitter: @GitteTitter | LinkedIn: in/gitte-vermeiren-b1b2221
Security is for everyone! The question is, where do you get started? Join April and Gitte as they talk about how to implement DevSecOps and ALL of the resources to help you integrate security into Azure and your CI/CD deployments.
Chapters
- 00:00 - Course Overview
- 01:20 - Intro to DevSecOps
- 09:20 - Plan and Develop your code with Security Tooling
- 21:51 - Embed Security into Every Code Commit
- 40:50 - Build and Test Your Code with Security Tooling
- 59:33 - Secure Your Production Environments
- 01:02:40 - Operate and Monitor Your Environments
- 01:03:02 - End to End Security Modeling
Recommended resources
- Plan and Develop: Threat Modeling, IDE Security Plugins, Secure Coding Standards, and Peer Review
- Embedding Security in your Code Commit: Secure Pipelines, OWASP, Dependency Management, and Application Security Testing
- Build and Test Your Code: Infrastructure Scanning, Security Acceptance Testing, and Dynamic Application Security Testing
- Send to Production: Configuration Checks, Live Site Penetration Testing, and Security Smoke Tests
- Operate and Monitoring: Continuous Monitoring, Threat Intelligence, Penetration Testing and Blameless Postmortems
- End to End Control of your Security Model: DevSecOps in Azure DevOps, DevSecOps in GitHub, and DevSecOps in AKS
- GitHub Repo containing all of our code
- Azure Architecture Center
- Become a Microsoft Sentinel Ninja
- Learn Azure Policy
- AZ-400 Learning Path
- Intro to DevOps Practices Learning Path
- Intro to Azure DevOps Learning Path
Related episodes
- Check out new episodes every week on Microsoft Learn
- Please like and subscribe | YouTube
- Managed Identity Series: Includes Identity and DevOps, Secretless Apps and so much more!
Connect
- April Edwards | Twitter: @TheAprilEdwards | LinkedIn: in/azureapril
- Gitte Vermeiren | Twitter: @GitteTitter | LinkedIn: in/gitte-vermeiren-b1b2221
Video URL
HTML iframe
Have feedback? Submit an issue here.