US flag US
888-843-8733
888-843-8733
  • Home
  • Courses
  • SecDevOps Foundation® (SDOF) Certification Training

SecDevOps Foundation® (SDOF) Certification Training

Course 3695

  • Duration: 3 days
  • Exam Voucher: Yes
  • Language: English
  • 17 NASBA CPE Credits (live, in-class training only)
  • 17 PMI PDUs
  • 8 DevOps Institute Continuing Education Units
  • Level: Intermediate

SecDevOps is the latest evolution in secure software development. Since its introduction in the guidebook by the U.S. Department of Homeland Security (DHS), it has become the go to methodology for writing highly secure computer programs, especially for government, commercial financial institutions and any other organizations which require the highest levels of cyber protection.

This certification training course will help you prepare for and successfully attain the highly respected SecDevOps Foundation (SDOF) certification. In this course, you will learn: 

  • Benefits, concepts, processes and vocabulary of SecDevOps to produce secure software and maintain high-quality agile delivery at speed and scale.
  • Why SecDevOps evolved as an agile methodology and went past the original DevSecOps practice of Continuous Integration and Continuous Delivery to include security/regulator Continuous Compliance (CI/CD/CC).
  • Which organizational culture changes and individual mindset perspectives are necessary to foster ongoing SecDevOps success and improvement.
  • How to plan, design and use a pipeline to test and operationally deploy and monitor production infrastructure.
  • Which techniques are best to find vulnerabilities and perform threat modeling to achieve a security-first perspective in the software development lifecycle.

SecDevOps Training Delivery Methods

  • In-Person

  • Online

  • Upskill your whole team by bringing Private Team Training to your facility.

SecDevOps Foundation Training Information

In this SecDevOps Foundation Course, you will:

  • Prepare for official SecDevOps Foundational certification (SDOF) from the DevOps Institute by PeopleCert.
  • Accelerate understanding and learning enjoyment through hands-on exercises and meaningful, problem-solving small group discussions.
  • Establish continuous learning practices to face new challenges including leveraging after-course one-on-one instructor coaching included in the course tuition.

Prerequisites

None.

SecDevOps Foundation Certification Details

  • The 60-minute certification exam is open-book and taken online after the course delivery has finished. An exam voucher is included in the course tuition.
  • The certification exam is administered through the DevOps Institute by PeopleCert.

SecDevOps Foundation Training Outline

Module 1: SecDevOps Context

  • Megatrends and Context
  • CALM Principles
  • The 3 Ways 

Module 2: Background and Overview

  • Iterative and incremental
  • From Scrum to SecDevOps
  • Automated testing
  • Key principles and security-first philosophy 
  • Exercise: Security Policy Test Planning

Module 3: Tools, Technology and the Pipeline

  • Continuous Integration, Delivery, Deployment and Compliance
  • SecDevOps lifecycle and the Pipeline
  • Pipeline for development
  • Pipeline for operations (Configuration as Code)
  • Exercise: Using a Vulnerability Scanner, Hands-On
  • Cloud, containers and security integration
  • Pipeline maturity and planning
  • Pipeline and other development tools
  • Exercise: Planning a Pipeline

Module 4: Risk, Vulnerabilities and Threats

  • Risk assessment – key goal
  • Cyber intelligence (know the enemy)
  • Threat and Vulnerability Catalogs
  • Exercise: SQL Injection Example, Hands-On
  • Threat modeling (STRIDE, OCTAVE and the PASTA process)
  • Exercise: Threat Modeling, Gamification
  • Gathering threat and vulnerability metrics
  • Exercise: Quantitative Scoring of Vulnerabilities (CVSS), Hands-On

Module 5: Culture Change and Leadership Mindset

  • What is good culture?
  • Culture assessment models – safe, trustworthy and empowering
  • Exercise: Identifying and improving your organization’s culture, video review
  • Leadership Mindset – Fixed or Growth
  • Agile at the organizational level (SAFe and SRE)
  • Personnel, stakeholders and the team
  • Homework Exercise: Mindset self-evaluation spreadsheet (optional)

Module 6: Best Practices for SecDevOps

  • Planning with a vision – start from where you are
  • Measuring your organization’s SecDevOps maturity
  • Exercise: SecDevOps Implementation Stages, survey
  • Embracing and enabling organization-level governance
  • Why care about GRC? 
  • Rethinking policies - policy as code
  • Building a responsive model
  • Deploying immutable infrastructure
  • Ongoing monitoring and evaluation
  • Exercise: Intrusion Detection, hands-on

Module 7: Continuous Learning

  • Experiential learning
  • Retrospective learning
  • Continual improvement
  • Learning sources

Module 8: Review and Summary

  • Exam review
  • Key course concepts
  • Next steps
Get This Course $2,785 $2,098 For Team Prices Call: 888-843-8733

  • 3-day instructor-led training course

  • After-course instructor coaching available

  • DevOps Institute certification exam included

#3695
  • May 28 - 30 12:00 PM - 7:30 PM EDT
    Bellevue, WA or Virtual
  • Jun 16 - 18 10:00 AM - 5:30 PM EDT
    Austin or Virtual
  • Jun 25 - 27 11:00 AM - 6:30 PM EDT
    Aurora, CO or Virtual
  • Jul 9 - 11 9:00 AM - 4:30 PM EDT
    Virtual
  • Jul 23 - 25 9:00 AM - 4:30 PM EDT
    Virtual
  • Jul 30 - Aug 1 9:00 AM - 4:30 PM EDT
    Virtual
  • Aug 6 - 8 9:00 AM - 4:30 PM EDT
    Ottawa or Virtual
  • Aug 20 - 22 12:00 PM - 7:30 PM EDT
    San Francisco or Virtual
  • Sep 3 - 5 9:00 AM - 4:30 PM EDT
    Herndon, VA or Virtual
  • Sep 17 - 19 11:00 AM - 6:30 PM EDT
    Aurora, CO or Virtual
  • Sep 24 - 26 9:00 AM - 4:30 PM EDT
    Toronto or Virtual
  • Oct 1 - 3 9:00 AM - 4:30 PM EDT
    New York or Virtual
  • Nov 5 - 7 10:00 AM - 5:30 PM EST
    Austin or Virtual
  • Nov 24 - 26 12:00 PM - 7:30 PM EST
    Bellevue, WA or Virtual
  • Dec 10 - 12 11:00 AM - 6:30 PM EST
    Aurora, CO or Virtual
  • Dec 17 - 19 9:00 AM - 4:30 PM EST
    Ottawa or Virtual
  • Jan 28 - 30 9:00 AM - 4:30 PM EST
    Herndon, VA or Virtual
  • Feb 25 - 27 9:00 AM - 4:30 PM EST
    New York or Virtual
  • Mar 4 - 6 12:00 PM - 7:30 PM EST
    San Francisco or Virtual
  • Mar 18 - 20 11:00 AM - 6:30 PM EDT
    Aurora, CO or Virtual
  • Mar 25 - 27 10:00 AM - 5:30 PM EDT
    Austin or Virtual

Scroll to view additional course dates

  • 3-day instructor-led training course

  • After-course instructor coaching available

  • DevOps Institute certification exam included

#3695
  • May 28 - 30 12:00 PM - 7:30 PM EDT
    Bellevue, WA or Virtual
  • Jun 16 - 18 10:00 AM - 5:30 PM EDT
    Austin or Virtual
  • Jun 25 - 27 11:00 AM - 6:30 PM EDT
    Aurora, CO or Virtual
  • Jul 9 - 11 9:00 AM - 4:30 PM EDT
    Virtual
  • Jul 23 - 25 9:00 AM - 4:30 PM EDT
    Virtual
  • Jul 30 - Aug 1 9:00 AM - 4:30 PM EDT
    Virtual
  • Aug 6 - 8 9:00 AM - 4:30 PM EDT
    Ottawa or Virtual
  • Aug 20 - 22 12:00 PM - 7:30 PM EDT
    San Francisco or Virtual
  • Sep 3 - 5 9:00 AM - 4:30 PM EDT
    Herndon, VA or Virtual
  • Sep 17 - 19 11:00 AM - 6:30 PM EDT
    Aurora, CO or Virtual
  • Sep 24 - 26 9:00 AM - 4:30 PM EDT
    Toronto or Virtual
  • Oct 1 - 3 9:00 AM - 4:30 PM EDT
    New York or Virtual
  • Nov 5 - 7 10:00 AM - 5:30 PM EST
    Austin or Virtual
  • Nov 24 - 26 12:00 PM - 7:30 PM EST
    Bellevue, WA or Virtual
  • Dec 10 - 12 11:00 AM - 6:30 PM EST
    Aurora, CO or Virtual
  • Dec 17 - 19 9:00 AM - 4:30 PM EST
    Ottawa or Virtual
  • Jan 28 - 30 9:00 AM - 4:30 PM EST
    Herndon, VA or Virtual
  • Feb 25 - 27 9:00 AM - 4:30 PM EST
    New York or Virtual
  • Mar 4 - 6 12:00 PM - 7:30 PM EST
    San Francisco or Virtual
  • Mar 18 - 20 11:00 AM - 6:30 PM EDT
    Aurora, CO or Virtual
  • Mar 25 - 27 10:00 AM - 5:30 PM EDT
    Austin or Virtual

Scroll to view additional course dates

  • Bring this or any training to your organization

  • Full-scale program development

  • Delivered when, where, and how you want it
  • Blended learning models
  • Tailored content
  • Expert team coaching
#3695
Questions about this course?
* Required Fields
Customize Your Team Training Experience

Fill out the form below or call 888-843-8733

* Required Fields
Preferred method of contact:

Need Help Finding The Right Training Solution?

Our training advisors are here for you.

Contact Us

SecDevOps Foundation Training FAQs

SecDevOps is a powerful modern approach for creating software that integrates security into the development life cycle. The U.S (United States). Department of Homeland Security (DHS) initiative effectiveness has been empirically proven to improve cyber protection significantly.

As a result, it is invaluable for reaching current CMMC (Cybersecurity Maturity Model Certification) requirements for vendors and government agencies.

DevSecOps and SecDevOps are remarkably similar frameworks. SecDevOps is formally proffered by DHS and has a distinctly “security first” philosophy. Over time, SecDevOps is evolving new insights and practices that go beyond the original scope of DevSecOps (such as planning, acquisition, and disposal of assets).

This course is intended for security experts, software developers, and operations specialists who must work in collaborative teams and understand SecDevOps basics. Accordingly, the material proceeds quickly into applicable practices for achieving highly robust CI/CD/CC results. The goal is to know where you are now, where you want to be in the future, and how best to get there.

PeopleCert CPDs are the continuing education credits that help you maintain PeopleCert certifications in PRINCE2, ITIL and DevOps Institute. 

Maintaining PeopleCert Certifications
All PeopleCert Business and IT certifications (including PRINCE2, ITIL and DOI) must be renewed within three years of their original certification date. There are two ways to keep certifications current: 

  1. Join PeopleCert Plus (a paid membership) to earn 20 CPDs per year for 3 years and renew certifications that way. 
  2. Earn another certification from the same Product Suite (for example, to renew all ITIL certifications you can earn a new ITIL certification) 

Eligible Learning Tree Training
Learning Tree training is not eligible for the PeopleCert Plus CPD program. Attendees can renew their PeopleCert certifications with Learning Tree by enrolling in another certification from the product suite they're trying to renew. Examples: 

  1. If you hold an ITIL 4 Foundation certification, and you acquire an ITIL 4 Practitioner or ITIL 4 Specialist certification, all your certification(s) belonging to the ITIL 4 Product Suite will be renewed.
  2. Similarly, if you hold a PRINCE2 Practitioner certification and you acquire an MSP Foundation, all your certification(s) belonging to the PRINCE2 Project, Programme & Portfolio Management Suite will be renewed.

Learn more about eligibility and CPDs on the PeopleCert website: Keep your certifications current| (peoplecert.org)

Attendee Process for Renewing PeopleCert Certifications with Learning Tree
Once an attendee successfully earns a PeopleCert certification from the same product suite they're trying to renew, their other certifications in that product suite will automatically renew. 

Approval Policies
N/A

Related Courses

  • DevOps Institute
    DevOps Foundation® (DOFD) Certification Training

    The DevOps Foundation® (DOFD) Certification training includes a collection of basic DevOps terms and concepts, highlights all aspects of DevOps, and more.

    Foundation
    2 days
    Online or In-class
    Starts from $1,675
  • DevOps Institute
    Site Reliability Engineering Foundation® (SREF) Certification Training

    The Site Reliability Engineering® (SRE) Foundation Training course highlights the evolution of SRE and its future, plus prepares you to complete the SRE exam.

    Foundation
    2 days
    Online or In-class
    Starts from $2,050
  • DevOps Institute
    DevOps Leader® (DOL) Certification Training

    DevOps Leader® (DOL) Certification Training provides the insights, techniques & innovative approaches for leaders involved in a DevOps cultural transformation.

    Intermediate
    2 days
    Team Training
Chat With Us