EC-Council Certified DevSecOps Engineer (ECDE)
EC-Council Certified DevSecOps Engineer (ECDE)
EC-Council Certified DevSecOps Engineer (ECDE) is a hands-on, instructor-led comprehensive DevSecOps certification program which helps professionals to build essential knowledge and abilities in designing, developing, maintaining a secure applications and infrastructure.
- This course is blended with both theoretical knowledge as well as the practical implementation of DevSecOps in your on-prem and cloud-native (AWS and Azure) environment
- The course covers integration and automation of all the major and widely used tools, processes, and methodologies of DevSecOps that help organizations to build secure applications rapidly in a DevOps environment
Pricing Options
On
Demand
On Demand Instructor-led Training Videos
Official E-Courseware
Online CyberQ Labs
Certificate of Completion
One Additional Certification Course Included
Live Instructor-led Training (in-person or online)
Online Exam Prep (CEH, CHFI, CND Only)
Certification Exam
CodeRed Continuing Education Video Subscription
$1,399$806$388$1,069
*Financing Available (US Only)
Unlimited On Demand
(Club)
On Demand Instructor-led Training Videos
Official E-Courseware
Online CyberQ Labs
Certificate of Completion
Live Instructor-led Training (in-person or online)*
Online Exam Prep (CEH, CHFI, CND Only)
Certification Exam
Unlimited Additional Certification Course Included
CodeRed Continuing Education Video Subscription
$2,999$2,999$2,999$2,999
*Financing Available (US Only)
Live
On Demand Instructor-led Training Videos
Official E-Courseware
Online CyberQ Labs
Certificate of Completion
Live Instructor-led Training (in-person or online)
Online Exam Prep (CEH, CHFI, CND Only)
Certification Exam
One Additional Certification Course Included
CodeRed Continuing Education Video Subscription
$1,799$1,799$1,799$1,799
*Financing Available (US Only)
*Upgrade any course to live training for $499
About the EC-Council Certified DevSecOps Engineer Course
Course Outline
- Module 01: Understanding DevOps Culture
- Module 02: Introduction to DevSecOps
- Module 03: DevSecOps Pipeline-Plan Stage
- Module 04: DevSecOps Pipeline-Code Stage
- Module 05: DevSecOps Pipeline-Build and Test Stage
- Module 06: DevSecOps Pipeline-Release and Deploy Stage
- Module 07: DevSecOps Pipeline-Operate and Monitor Stage
- The information provided in the E|CDE course is complemented with practical implementation of labs that allows you to easily get DevSecOps Engineer job in any part of the world.
- Whether your organization workloads or applications deployed in on-premises or cloud-native environment (AWS or Azure), this course will teach you how to use various DevSecOps tools and secure the application code throughout the software development lifecycle.
- The DevSecOps security tools that help in secure development of software products or web applications are subtly segregated into On-premises and Cloud-native environment.
- The E|CDE course not only focuses on Application DevSecOps, but it also provides insights into infrastructure DevSecOps.
- The integration of all the popular and important tools are illustrated in respective stages of DevOps lifecycle.
- The E|CDE program helps DevSecOps Engineer to develop and enhance their knowledge and skills in securing the application in all the stages of DevOps.
- This makes the certification stand apart from all other DevSecOps certification programs available in the market.
- Understand the DevOps culture and principles and learn about the exhaustive list of tools and technologies that enable adopting DevOps methodologies.
- Understand the security bottlenecks while implementing DevOps and learn the DevSecOps culture, philosophy, practices, and tools to enhance collaboration and communication across the development and operations teams.
- Transform the organization’s security practices from the traditional approach by integrating security into Continuous Delivery workflows.
- Understand the DevSecOps toolchain and include security controls in the DevOps automated pipeline.
- Learn to Integrate Eclipse, Github with Jenkins to Build Applications
- Align various security practices like security requirement gathering, threat modelling, secure code reviews etc., with the development workflow.
- Learn to integrate threat modelling tools like Threat Dragon, Threat Modeler and Threatspec.
- Integrate Jira and Confluence to manage security requirements
- Learn integration of security plugins, scanners, Software composition analysis (SCA) tools with IDE to detect and mitigate vulnerability during development and Shift-Left security approach from prevention to identification.
- Learn to use Jenkins in creating a secure CI/CD pipeline.
- Understand and implement continuous security testing and learn the use of various SAST tools (Synk, SonarQube, Checkmarx) DAST tools (Stackhawk, OWASP ZAP Baseline Scan) IAST (Checkmarx, NetSparker) and SCA tools (Debricked, White Source Bolt, OWASP Dependency-Check).
- Integrate RASP tools like Hdiv, Sqreen and Dynatrace protects the application during runtime with fewer false positives and remediate known vulnerabilities
- Integrate SonarLint with Eclipse, Visual Studio, VS Code IDE
- Implement tools like JFrog Security IDE Plugin, Snyk ID, and Codac
- Integrate automated security testing into a CI/CD pipeline Amazon CloudWatch, AWS CodeCommit, AWS CodeBuild, AWS CodePipeline, Amazon ECR, AWS Lambda, and AWS Security Hub.
- Various automation tools and practices help automate development, security, and operations both in on-Premises and cloud environments.
- Integrate tools like Jenkins, Bamboo, Teamcity and Gradle.
- Perform continuous vulnerability scans on product builds using various automated scanning tools like Nessus, SonarQube, SonarCloud, Amazon Macie, and Probely Vulnerability Scanning.
- Implement penetration testing tools like GitGraber, and GitMiner to secure the CI/CD pipeline.
- Learn AWS and Azure DevSecOps Tools for Securing Applications.
- Learn to integrate automated tools to identify security misconfigurations that lead to exposure of sensitive information and result in attacks.
- Understand infrastructure as Code (Iac) to provision and configure infrastructure using various tools like Ansible, Puppet, Chef.
- Understand the tools and services to monitor infrastructure, network, and applications in On-prem and cloud environments.
- Audit everything from code pushes, pipelines, compliances using various logging tools and monitoring logs like Sumo Logic, Datadog, Splunk, ELK and Nagios.
- Use automated monitoring and alerting tools and create a real-time alerting and control system. Splunk, Azure Monitor, Nagios.
- Integrate compliance as code (CaC) tools like Cloud Custodian, DevSec to ensure that the regulatory or compliance requirements of an organization are met without influencing the production
- Learn to scan and secure the infrastructure using container and image scanners (Trivy, Qualys) infrastructure Security scanners (BridgeCrew, Checkov).
- Integrate tools and practices to build continuous feedback in the DevSecOps pipeline using email notification in Jenkins and Microsoft Teams.
- Integrate alerting tools like OpsGenie with log management, and monitoring tools enhance the performance and security of the operations.
Exam Title: EC-Council Certified DevSecOps Engineer (ECDE)
Exam Code: 312-97 (ECC EXAM), 312-50 (VUE)
Number of Questions: 100
Test Format: Multiple Choice
Duration: 4 Hours
Availability: EC-Council Exam Portal
Passing Score: 70%
- DevSecOps Engineer/Senior DevSecOps Engineer
- Cloud DevSecOps Engineer
- Azure DevSecOps Engineer
- AWS DevSecOps Engineer
- DevSecOps Analyst
- DevSecOps Specialist
- DevSecOps Operations Engineer
- DevSecOps Systems Administrator
- DevSecOps System Engineer
- DevSecOps Consultant
- DevSecOps Systems Engineer
- DevSecOps CI/CD Engineer
- Infrastructure DevSecOps Engineer
Save big. Join the club.
As an iClass Club member, you receive unlimited access to EC-Council’s library of video courses. Upgrade to live classes for only $499 each during the subscription year.
You can even finance your Club membership through our partnership with Affirm. In the cart, you’ll be able to split your purchase into easy monthly payments. Term lengths range from 3 to 36 months depending on eligibility and purchase amount, with rates starting as low as 0% APR.
*Your rate will be 0% APR or 10–30% APR based on credit and is subject to an eligibility check. 0% APR is subject to change. Payment options through Affirm are provided by these lending partners: affirm.com/lenders. Options depend on your purchase amount, and a down payment may be required. US Residents Only.
Certification Club Benefits:
Don’t limit yourself to one class per year, join the iClass Club and get your cybersecurity training directly from the source! No one course can make you an expert, so take advantage of EC-Council Master trainers in each subject area and become a well-rounded cybersecurity professional.
For approximately the cost of one live course, the iClass Club will stretch your budget from one course to many. With savings like that, you can afford to build a strong foundation of cybersecurity knowledge in ethical hacking, pen testing, network defense, incident response, computer forensics, and so much more!
|
Get Started |
|
One Year Subscription $2,999 |
|
Access to EC-Council’s full library of on-demand courses |
|
Official e-courseware |
|
iLabs* |
|
Certification exam* |
|
Move to “enhance” to upgrade your experience. |
|
Enhance |
|
During your subscription, you can upgrade to a live course for $499! |
|
Official Printed Courseware |
|
iLabs* |
|
Certification exam* |
|
Lastly, receive ongoing professional development by moving to the Continuing Education phase! |
|
Continuing Education |
|
One year of CodeRed Included |
|
Continue to learn and gather continuing education credits with CODERED! |
|
Premium Content: 4000+ Premium Videos |
|
Fresh Content: New courses and content are added weekly to keep up with the latest skills and technologies. |
|
CodeRed course videos come with lab demos to reinforce course learning concepts and create a constant career learning companion. |
|
Club Subscription in North America |
|
Club Subscription outside of North America |
Certification Club Terms:
*Not all courses and workshops have associated Labs and exams. Club members must complete 100% of a course before requesting their next course and to be eligible for that course’s exam voucher. CCISO students must meet the eligibility requirements to challenge the CCISO exam. Students who do not meet the CCISO qualifications must take the EISM exam. CodeRed subscription 12 months. Club membership applicable to EC-Council classes only and does not apply to third party or Hacker Halted classes. Devices such as drones or STORMs must be purchased separately at regular price. Drones and STORMs only ship to the US. Students outside of the US can attend drone workshops but must obtain a drone on their own. If a course version changes while your program is still active, you will be given updated material. If a course version changes after your Club is expired, you will need to purchase an extension to get the new version. Club valid for one year and term begins 24 hours after payment is received. After a period of one (1) year the program expires, and all courses are turned off. Lab access term is for 6 months from when a course is assigned. Additional lab time can be added for no extra charge upon request. Labs will not be extended beyond the Club term. Speak to your rep to extend your Club term for 1 year. Renewal price for the Club is $999. Discount not stackable. The Club is a single user license meaning that the courses cannot be shared, and the club is non-transferable.
If you are outside of North America and are interested in the club subscription, please click here.
If you are outside of North America and are interested in the club subscription, please click here.
If you are outside of North America and are interested in the club subscription, please click here.