Ultimate DevSecOps Bootcamp by School of Devops

Are you building or deploying applications on Kubernetes? Whether you’re a DevOps Engineer, Platform Engineer, or AI/ML Engineer, security can no longer be an afterthought.

This hands-on DevSecOps Bootcamp will help you build secure, production-ready CI/CD pipelines using open-source tools and industry best practices. Learn how to integrate security across the software development lifecycle and ensure your applications are secure by design.

We will walk you through step-by-step labs that combine Jenkins, Kubernetes, ArgoCD, Vault, Trivy, Falco, OWASP ZAP, and other essential tools used in modern DevSecOps workflows.

This course is ideal for teams building cloud-native applications, AI/ML models, or any containerized workload that needs to be deployed securely at scale.

What You Will Learn:

• Core DevSecOps principles and the secure software delivery lifecycle
• How to build a CI/CD pipeline with Jenkins on Kubernetes
• Software Composition Analysis (SCA) using OWASP Dependency-Check, Pyraider, and Dependency-Track
• Static and Dynamic Application Security Testing (SAST & DAST) using slscan and OWASP ZAP
• Securing container images using Trivy, Dockle, and multi-stage Dockerfiles
• Enforcing compliance as code using InSpec and Ansible
• Secrets management using HashiCorp Vault and Kubernetes RBAC
• Runtime security monitoring using Falco with automated response pipelines
• Secure deployment workflows with GitOps using ArgoCD and Kubernetes

Tools and Technologies You Will Use:

• Jenkins, Helm, Kubernetes (GKE), ArgoCD
• Trivy, Dockle, OWASP ZAP, slscan, Pyraider
• Vault, InSpec, Ansible, Falco, Argo Workflows
• Docker, Kubernetes RBAC, GitHub, GitOps

Who Should Take This Course:

• DevOps and Cloud Engineers who want to add security to their toolbelt
• AI/ML Engineers deploying models and services on Kubernetes
• Platform Engineers managing modern microservices at scale
• Security Engineers transitioning to DevSecOps practices
• Developers building containerized applications for production

This is not a theoretical course. You will be working on real-world labs and projects that simulate what modern engineering teams do to secure their software pipelines in production environments.

Whether you’re deploying a machine learning model, a microservice, or a SaaS product — this course will help you ensure that your deployments are secure, scalable, and compliant.