Enabling Security Governance and Compliance in DevSecOps
This course will teach you the importance of strong Security Governance and Compliance. Learn to leverage DevSecOps pipelines for automatic compliance using “Compliance as Code," a critical part of modern cloud strategy to demonstrate Governance.
What you'll learn
In an ever-changing world security is key. Cloud environments present interesting challenges when it comes to building a strong security infrastructure. In this course, Enabling Security Governance and Compliance in DevSecOps, you’ll learn to how to achieve strong security governance and compliance using DevSecOps. First, you’ll explore why strong governance is essential for all modern environments, in particular cloud environments. Next, you’ll discover the distinction between governance and compliance, and why you need both to be successful. Then, you’ll learn how to utilize you existing DevSecOps pipelines to enable strong governance and compliance practices. Finally, you’ll learn how you can achieve automated security compliance using “Security as Code” in your pipelines. When you’re finished with this course, you’ll have the skills and knowledge of Security Governance and Compliance needed to demonstrate how your DevSecOps pipeline can support this critical requirement.
Table of contents
In this course, you will learn the major approaches to enabling security governance and compliance, why we need governance and compliance and what the differences between the two are, best practices for using both governance and compliance, and other tools that you should consider implementing.
Some benefits of security compliance are: avoiding fines and penalties, protects business reputation, data management enhancements, additional insights with operational benefits.
Data governance is the process of managing the availability, usability, integrity, and security of the data in enterprise systems, based on internal data standards and policies that also control data usage.
A DevSecOps pipeline is a set of security practices incorporated into your software development life cycle to build, test, and deploy secure software faster and easier.
A CSP is a Cloud Solution Provider that can enable their customers to pay for Azure Devops by using a CSP-based Azure Subscription.