SC480: Secure Operations

Agenda:

• Module 1: Fundamentals of secure operations
  • Introduction to SecOps: Significance, objectives and benefits
  • Evolution of security practices: From silos to integration
  • Key terms and concepts: Zero trust, least privilege, etc.

• Module 2: Security awareness and threat landscape
  • Awareness of current security threats
  • Phishing, social Engineering and other attack techniques
  • How security awareness strengthens enterprise security

• Module 3: Fundamentals of information security in operations
  • Identity management and access control
  • Network security and monitoring
  • Change and patch management
  • Cloud security and modern technologies
  • Regulatory requirements
  • Definition of measures, implementation plans and economic considerations
  • Provision of personnel and financial resources

• Module 4: Incident Response and crisis management
  • Building an incident response plan: Preparation for emergency situations
  • Identification, response and recovery after incidents
  • Communication and coordination in crisis situations

• Module 5: Automation, tooling and DevSecOps
  • Integration of automation in SecOps practices
  • Overview of automation tools and their deployment
  • Integration of security and DevOps for effective deployment

• Module 6: Evaluation and continuous improvement
  • Assessment of effectiveness of SecOps measures
  • Data collection and analysis for identification of vulnerabilities
  • Adaptation to evolving threats and business requirements

Objectives:

• Understanding the significance of Secure Operations (SecOps) for organizations
• Learning the differences between traditional security approaches and SecOps
• Fundamental understanding of security concepts such as Zero Trust and Least Privilege
• Awareness of current security threats and risks
• Ability for real-time monitoring and detection of security anomalies in operations
• Familiarity with SIEM systems and their role in threat detection
• Integration of automation tools for efficiency enhancement in SecOps
• Understanding the role of SecOps in secure application deployment
• Ability to assess the effectiveness of SecOps measures
• Acquisition of skills for data collection and analysis for continuous improvement
• Adaptation to evolving threats and business requirements

Target audience:

The training SC480 Secure Operations is targeted at:

• Administrators
• Security Engineers
• Security Architects
• DevOps Engineers
• Information Security Officers / CISOs

Prerequisites:

Description:

The term Security Operations (SecOps) describes the approach to integrate security and operational processes in an organization to ensure effective security practice. The focus is on seamlessly integrating security aspects into daily operational processes, rather than treating them as separate and isolated activities. SecOps aims to improve incident response capabilities, minimize security gaps, and increase the efficiency of security measures.

In the workshop SC480 Secure Operations, various principles in the SecOps domain are examined in detail and an approach is created to successfully introduce SecOps in enterprises. Both focus areas of information security and operations and their interaction with other processes and departments in the enterprise are addressed.

The course is part of the "qSkills™ Secure Software Quadrant", consisting of:

• SC460 Secure Architecture and Design
• SC470 Secure Development Principles
• SC475 OWASP Security Champion
• SC480 Secure Operations