YoVDO

Security in Software Development Process - From Design to Deployment

Offered By: Devoxx Poland via YouTube

Tags

Kubernetes Courses Threat Modeling Courses Vulnerability Scanning Courses Web Application Firewalls Courses Secrets Management Courses Trivy Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore security best practices throughout the software development lifecycle in this 51-minute conference talk from Devoxx Poland 2021. Delve into topics such as OWASP, CIS Benchmarks, Trivy, Distroless, Sops, and Kubernetes as Radek Grebski, Co-Founder and CTO of Stepwise.pl, shares insights on implementing security measures from design to deployment and maintenance. Learn about Secure Software Development Lifecycle (SSDL), threat modeling, and practical tools like kube-bench, detect-secrets, and Starboard. Gain valuable knowledge on reducing vulnerabilities, securing code and databases, and conducting effective attack surface analysis to enhance your software development process.

Syllabus

Intro
Why "Security in Software Development Process"?
Software Development Lifecycle (SDL)
Secure Software Development Lifecycle (SSDL)
Requirement Analysis
Threat Modeling
OWASP Top 10 Proactive Controls
OWASP Application Security Verification Standard (ASVS)
Web Application Firewall (WAF)
Securing Database
Attack Surface Analysis
Deployment Environment Design
Implementation
Securing Code
Secrets OperationS (SOPS)
Trivy alternatives
Verification / Testing
Release
Starboard
Summary


Taught by

Devoxx Poland

Related Courses

Microsoft Azure for Node.js Developers - Building Secure Services and Applications
Pluralsight Configuring and Managing Microsoft Azure Key Vault
Pluralsight Threat Modeling: Information Disclosure in Depth
LinkedIn Learning Getting Started with HashiCorp Vault
Pluralsight Installing and Configuring HashiCorp Vault
Pluralsight