Introduction to DevSecOps

Introduction to DevSecOps

Instructor: Joel Coffman

What you'll learn

Describe DevSecOps
Explain the three principles that underpin DevSecOps practices
Plan a DevSecOps transformation
Automate tasks to increase the quality and throughput of work

Skills you'll gain

Leadership and Management

Details to know

Shareable certificate

Add to your LinkedIn profile

Assessments

17 assignments

Taught in English

See how employees at top companies are mastering in-demand skills

Learn more about Coursera for Business

Earn a career certificate

Add this credential to your LinkedIn profile, resume, or CV

Share it on social media and in your performance review

There are 4 modules in this course

DevSecOps has gained considerable momentum in recent years. It integrates software development (Dev), information security (Sec), and IT operations (Ops) so that businesses increase the value delivered by software. This course provides an overview of DevSecOps; introduces essential practices, such as continuous integration / continuous deployment (CI/CD), that shorten the cycle from implementing a feature to its availability to users; and describes how to start a DevSecOps transformation.

What is DevSecOps? How did we get here? This module provides a brief overview of software processes (e.g., waterfall and agile), why many organizations are adopting DevSecOps to increase the business value being delivered by software, and the principles that underpin DevSecOps practices.

What's included

12 videos8 readings5 assignments1 discussion prompt3 plugins

12 videosTotal 66 minutes

Welcome2 minutesPreview module
Imagine the Possibilities4 minutes
The Problem9 minutes
Breaking the Downward Spiral6 minutes
Software Processes4 minutes
Agile Software Development6 minutes
Lean Manufacturing3 minutes
The Technology Value Stream6 minutes
The Three Ways4 minutes
What is DevSecOps?6 minutes
Information Security is Everyone's Job5 minutes
Myths5 minutes

8 readingsTotal 60 minutes

Syllabus5 minutes
Lesson Overview0 minutes
Lesson Overview0 minutes
Lesson Overview0 minutes
Lesson Overview0 minutes
State of DevOps45 minutes
Module Review0 minutes
Making the Kessel Run10 minutes

5 assignmentsTotal 135 minutes

Introduction30 minutes
Software Processes30 minutes
DevOps30 minutes
DevSecOps30 minutes
Introduction15 minutes

1 discussion promptTotal 10 minutes

Chronic Conflict10 minutes

3 pluginsTotal 29 minutes

Take the DORA DevOps Quick Check15 minutes
DevOps Research and Assessment (DORA) metrics9 minutes
What is DevOps?5 minutes

The behaviors and practices of DevSecOps stem from three principles: the fast flow of planned work throughout the value stream, constant feedback at every stage in the process, and the creation of a generative culture that embraces continual learning. This module dives into each of these principles in more detail, illustrating the concepts with real-world examples related to manufacturing and technology as evidence of their applicability to different domains.

What's included

18 videos8 readings4 assignments1 discussion prompt2 plugins

18 videosTotal 77 minutes

Overview of the Principles of Flow1 minutePreview module
Limit Work in Progress4 minutes
Reduce Batch Size4 minutes
Reduce Hand-offs4 minutes
Identify and Elevate Constraints4 minutes
Eliminate Hardship and Waste3 minutes
Working Safely in Complex Systems3 minutes
Three Mile Island accident5 minutes
Seeing Problems4 minutes
Solving Problems6 minutes
Push Quality to the Source3 minutes
Optimize for Downstream Work2 minutes
Organizational Culture6 minutes
Enabling Organizational Learning and Safety4 minutes
Improving Daily Work6 minutes
Transform Local Discoveries into Global Improvements4 minutes
Inject Resiliency4 minutes
Leadership3 minutes

8 readingsTotal 40 minutes

Lesson Overview0 minutes
Lesson Overview0 minutes
The Andon Cord10 minutes
Lesson Overview0 minutes
Chaos engineering helps DevOps cope with complexity10 minutes
Module Review0 minutes
The Three Ways: The Principles Underpinning DevOps10 minutes
A Personal Reinterpretation Of The Three Ways10 minutes

4 assignmentsTotal 110 minutes

Principles of Flow30 minutes
Principles of Feedback30 minutes
Principles of Continual Learning30 minutes
The Three Ways20 minutes

1 discussion promptTotal 10 minutes

Continual Learning10 minutes

2 pluginsTotal 11 minutes

Kanban6 minutes
How Toyota Changed The Way We Make Things5 minutes

How do we start a DevSecOps transformation in our organization? When we're in trouble, we don't get many chances so we need to maximize our likelihood of success! Consequently, we should identify a value stream that supports our long-term objectives, carefully select who is involved in the transformation, and elevate existing constraints that limit our ability to scale.

What's included

13 videos6 readings4 assignments

13 videosTotal 54 minutes

The Value Stream3 minutesPreview module
Types of Projects5 minutes
Who: Starting and Expanding3 minutes
Value Stream Mapping5 minutes
Starting the Journey7 minutes
Conway's Law3 minutes
Organizational Structure6 minutes
Everyone's Job4 minutes
Funding1 minute
Loosely-Coupled Architectures3 minutes
Overview2 minutes
Shared Services3 minutes
Integrating Daily Work4 minutes

6 readingsTotal 20 minutes

Lesson Overview0 minutes
Lesson Overview0 minutes
Lesson Overview0 minutes
Module Review0 minutes
Project To Product: How Value Stream Networks Will Transform IT & Business10 minutes
Conway's Law: Critical For Efficient Team Design In Tech10 minutes

4 assignmentsTotal 115 minutes

The Value Stream30 minutes
Organizational Structure30 minutes
Integrating Ops with Dev30 minutes
Getting Started25 minutes

In this module, we'll apply DevSecOps practices in the context of developing a website. To do that, we'll introduce Git, a distributed version control system, and GitHub, a software development and project management platform; these two tools will be used extensively later in this specialization. Rather than developing the website from scratch, we'll use Jekyll, a static site generator, to convert Markdown files to web pages automatically. Finally, we'll introduce GitHub Actions to automate various tasks, from building the site to monitoring it in production.