Intermediate · Course

DevSecOps Engineering

Integrate security practices into CI/CD pipelines, automate security testing, and implement infrastructure as code securely. Covers GitHub Actions, Terraform, and container hardening.

41 hours Marcus Chen Docker / K8s / Terraform

DevSecOps Engineering shows you how to move security left — embedding it into the delivery pipeline so it becomes a default, not a gate at the end. Over 41 hours you automate security testing, harden containers, and manage infrastructure as code without slowing the team down.

Who this course is for

It is designed for DevOps and platform engineers, and for developers who want security to be automatic rather than an afterthought. A working knowledge of CI/CD pipelines and containers is recommended so you can focus on the security layer.

What you will be able to do

You will add static and dynamic analysis to pipelines, scan dependencies and container images for vulnerabilities, manage secrets properly so they never reach source control, and enforce policy as code. You will harden container images and Kubernetes workloads, and secure Terraform-managed infrastructure against misconfiguration and drift.

How it is taught

The program is built around the toolchains teams actually deploy: GitHub Actions for CI/CD, Terraform for infrastructure as code, and Docker and Kubernetes for workloads. Every topic is reinforced in hands-on labs, and the course ends with a capstone in which you build a secure end-to-end pipeline from commit to deployment.

You leave able to make security an automatic property of delivery — faster, safer releases without friction between security and engineering.

Curriculum

01

The DevSecOps model

Shifting security left; culture, ownership, and the pipeline as a control point.

02

Securing CI/CD

Adding SAST, DAST, and dependency scanning to GitHub Actions pipelines.

03

Container hardening

Building minimal, signed images and scanning them for vulnerabilities.

04

Infrastructure as code

Securing Terraform; policy as code and drift detection.

05

Secrets management

Removing secrets from code; vaulting and rotation.

06

Pipeline capstone

Build a secure end-to-end pipeline from commit to deployment.

Frequently asked questions

Do I need to be a developer to take this course?

Not strictly, but you should be comfortable with the command line and understand how CI/CD pipelines and containers work. The course focuses on the security layer on top of those.

Which tools will I learn?

GitHub Actions, Terraform, Docker, and Kubernetes, plus common scanning and secrets-management tooling. The principles transfer to other stacks.

Enrol in this course All courses