- Популярные видео
- Авто
- Видео-блоги
- ДТП, аварии
- Для маленьких
- Еда, напитки
- Животные
- Закон и право
- Знаменитости
- Игры
- Искусство
- Комедии
- Красота, мода
- Кулинария, рецепты
- Люди
- Мото
- Музыка
- Мультфильмы
- Наука, технологии
- Новости
- Образование
- Политика
- Праздники
- Приколы
- Природа
- Происшествия
- Путешествия
- Развлечения
- Ржач
- Семья
- Сериалы
- Спорт
- Стиль жизни
- ТВ передачи
- Танцы
- Технологии
- Товары
- Ужасы
- Фильмы
- Шоу-бизнес
- Юмор
Day 13: Secure Software Development & Supply Chain Defense (DevSecOps) | 28-Day Masterclass
Welcome to Day 13 of the 28-Day Cybersecurity Masterclass! 🛠️
Today, we are shifting security "to the left" by integrating it directly into the development lifecycle—a practice known as DevSecOps. It is no longer enough to just protect the perimeter; security must be built into the application from the ground up. We will explore how to establish a secure development lifecycle and defend against critical vulnerabilities that emerge during the software build process
.
What you will learn in this video:
Secure Design & Threat Modeling: Learn how to establish a library of secure design patterns and use threat modeling for critical authentication and access control flows
. We will also cover writing unit and integration tests to validate that all critical flows are secure
.
Software Supply Chain Failures: Dive into A03 of the OWASP Top 10 2025, which highlights the risks of using vulnerable, unsupported, or out-of-date software components
. We will explore how insecure CI/CD pipelines and reliance on untrusted sources (like public Docker Hubs or public GitHub repositories) can introduce malicious code into your applications
.
Supply Chain Defense Strategies: Learn actionable prevention methods, including how to continuously inventory the versions of your client-side and server-side components, obtain libraries only from official sources over secure links, and actively monitor for unmaintained components
.
Resources Mentioned:
OWASP Top 10 2025 (A03: Software Supply Chain Failures & A06: Insecure Design)
Defending Against Software Supply Chain Attacks - CISA
Hit the Like button if you are ready to secure your code, and make sure to Subscribe and turn on notifications so you don't miss Day 14, where we will step into the shoes of an attacker with Network Scanning & Active Reconnaissance!
Tags: #SecureSoftwareDevelopment #DevSecOps #SupplyChainSecurity #OWASP #CybersecurityMasterclass #SecureCoding #InfoSec #CyberTraining #LearnCybersecurity
Видео Day 13: Secure Software Development & Supply Chain Defense (DevSecOps) | 28-Day Masterclass канала Grow Interns
Today, we are shifting security "to the left" by integrating it directly into the development lifecycle—a practice known as DevSecOps. It is no longer enough to just protect the perimeter; security must be built into the application from the ground up. We will explore how to establish a secure development lifecycle and defend against critical vulnerabilities that emerge during the software build process
.
What you will learn in this video:
Secure Design & Threat Modeling: Learn how to establish a library of secure design patterns and use threat modeling for critical authentication and access control flows
. We will also cover writing unit and integration tests to validate that all critical flows are secure
.
Software Supply Chain Failures: Dive into A03 of the OWASP Top 10 2025, which highlights the risks of using vulnerable, unsupported, or out-of-date software components
. We will explore how insecure CI/CD pipelines and reliance on untrusted sources (like public Docker Hubs or public GitHub repositories) can introduce malicious code into your applications
.
Supply Chain Defense Strategies: Learn actionable prevention methods, including how to continuously inventory the versions of your client-side and server-side components, obtain libraries only from official sources over secure links, and actively monitor for unmaintained components
.
Resources Mentioned:
OWASP Top 10 2025 (A03: Software Supply Chain Failures & A06: Insecure Design)
Defending Against Software Supply Chain Attacks - CISA
Hit the Like button if you are ready to secure your code, and make sure to Subscribe and turn on notifications so you don't miss Day 14, where we will step into the shoes of an attacker with Network Scanning & Active Reconnaissance!
Tags: #SecureSoftwareDevelopment #DevSecOps #SupplyChainSecurity #OWASP #CybersecurityMasterclass #SecureCoding #InfoSec #CyberTraining #LearnCybersecurity
Видео Day 13: Secure Software Development & Supply Chain Defense (DevSecOps) | 28-Day Masterclass канала Grow Interns
cybersecurity masterclass 28-day cybersecurity challenge learn cyber security from scratch cyber security full course for beginners IT security training infosec career guide become a cybersecurity expert cybersecurity bootcamp Cyberforce training London School of Cybersecurity CompTIA Security+ SY0-701 study plan Sec+ 30 days prep cybersecurity developer roadmap free cyber training complete cyber security roadmap. TCP/IP protocols OSI model basics Wireshark
Комментарии отсутствуют
Информация о видео
4 ч. 55 мин. назад
00:04:23
Другие видео канала
