Indicative Content |
DevOps
DevOps. Reference Architecture for DevOps. Change Management. Continuous Integration (CI). Continuous Delivery (CD). Continuous Testing. Infrastructure as a Service. Continuous Security
|
Continuous Integration
CI pipeline. Code Repository. CI Platform.
|
Continuous Delivery
CD Pipeline. Container Repository. Production Infrastructure. Deployment Automation and Release Management
|
DevOpsSec - Continuous Security
Test Driven Security. Application Security. Infrastructure Security. Pipeline Security. Testing Continuously. Monitoring and Responding to Attacks. Assessing Risks and Maturing Security
|
Protecting Web Applications
Securing and testing web apps. Website attacks and content security. Methods for authenticating users. Managing dependencies
|
Automating security testing of the Infrastructure in the CD pipeline
Securing and testing cloud infrastructure: the deployer app. Restricting network access. Building a secure entry point. SSH Security Considerations. Opening access between security groups. Controlling access to the database. . Multifactor Authentication. Database permission models to control access. Database admin credentials
|
Securing communication
Secure communication. SSL/TLS. HTTPS
|
Securing the delivery pipeline
Access control to code-management infrastructure. Access control for container storage. Access control for infrastructure management.
|
Collecting and analysing logs
Collecting logs from systems and applications. Streaming logging events through message brokers. Processing events in log consumers. Storing and archiving logs. Accessing logs. Architecture of a log analysis layer. Detecting attack using string signatures. Statistical models for fraud detection. Using geographic data to find abuses. Detecting anomalies in known patterns. Raising alerts to operators and end users
|
Recommended Book Resources |
---|
-
Jim Bird. DevOpsSec, [ISBN: 9781491971413].
-
Julien Vehent. (2018), Securing DevOps, Manning Publications, p.400, [ISBN: 1617294136].
|
Supplementary Book Resources |
---|
-
Gene Kim,Patrick Debois,John Willis,Jez Humble. (2015), The DevOps Handbook, It Revolution Press, p.480, [ISBN: 1942788002].
-
Module Assessment.
-
The module is practical in nature and promotes graduate attributes such as team work and therefore the assessment is based on continuous assessments and a Collaborative Project..
-
Assessment Type.
-
Assessment Description.
-
Assessment Learning Outcomes.
-
Assessment Percentage of Total Mark.
-
Assessment Timing.
-
Formative Assessment.
-
Formative assessment will be provided on the in-class individual or group activities..
-
1,2,3, 4.
-
-
Labs.
-
A series of labs that demonstrate the securing of the DevOps pipeline..
-
1,2,3.
-
ongoing.
-
Project.
-
Learners work in teams to create a DevOpsSec pipeline.
-
Week 12.
-
Specifications for module staffing requirements.
-
Master’s degree in computing or cognate discipline. May have industry experience also..
-
Module Re-assessment.
-
Learners who fail this module will be required to sit a repeat module assessment where all learning outcomes will be examined..
|
This module does not have any article/paper resources |
---|
This module does not have any other resources |
---|