practical-devsecops.com Omdömen 713

Detailed course. Lab helps in the overall understanding.

The course covered many topics which was good.

After the expiry of labs, access to lab commands should be given to students. I don't know why the access to commands was also revoked.

More practice sessions and scenarios should be introduced in the course so that students can get a better understanding of attacking comtainers concepts. I would say reduce few topics and introduce more practice sessions. For eg. Incident response and forensics can be removed and instead of that more scenarios on how to attack a container can be introduced.

The course provided me with a structured understanding of integrating security into the DevOps pipeline. I gained hands-on experience with security automation, CI/CD security, and infrastructure as code security. This enabled me to confidently implement security controls earlier in the software development lifecycle, reducing vulnerabilities and improving overall application security.

The course is a really good in depth view of the subject. The support provided throughout is great.

I recently completed my CCSE certification from Practical DevSecOps, and it was a fantastic experience. The course content is well-structured and highly engaging. I really appreciated the learning approach—first understanding the theory and then applying it in the labs. Many of the lab exercises went beyond the theoretical concepts, requiring additional research, which helped reinforce my understanding and build confidence.
With my prior experience in the field, I found the exam questions to be moderately challenging. However, success was largely dependent on how well I prioritized and managed time for the given tasks. Since I work on building platforms based on container technology, the knowledge gained from this course is invaluable in designing solutions with strong security guardrails.
Overall, the course not only introduced me to various tools and techniques but also provided a clear direction on approaching container security from an architectural perspective.

The Practical DevSecOps Certification provided a hands-on learning experience with real-world scenarios. The labs were well-structured, covering CI/CD security, container security, and cloud security. The practical approach made it engaging, and the community support was excellent.

Highly recommended for those looking to gain industry-relevant DevSecOps skills!

The hands-on nature of the labs closely mirrors real-world DevSecOps challenges.
Providing a real-world, hands-on exam environment rather than a multiple-choice format was exciting.
Supporting the community with forums and discussions.
During the lab access period, the support from the CDP team was very great!!

Other Kubernetes Security certifications exist, but what makes the CCNSE certification unique is its comprehensive curriculum that includes hands-on training and 24/7 instructor support, topped off with a challenging exam.
This certification not only teaches you how to assess Kubernetes security but also how to effectively use security tools.
For me, the most interesting aspect was the exam itself: You’ll face 5 challenges over 6 hours and have an additional 24 hours to deliver artifacts and documentation.
As a security expert, you’ll be able to execute a real-world security project.
As a manager or visionary within your company, you will be equipped to propose a security roadmap for your products.
The certification exam was so challenging that it was almost enjoyable to fail and try again! But fortunately, I didn't fail.

I think the best things are the syllabus are properly arranged and easy to follow. The support team is also fantastic in helping me to understand it.

Practical DevSecOps professional exam teaches us how to implement security in pipeline. It is useful for professional developer as well as entry level developer.

I recently completed the DevSecOps course, and I can honestly say it was one of the best learning experiences I’ve had in my professional journey. This course goes beyond theory—it provides hands-on, practical knowledge that you can immediately apply to real-world CI/CD pipelines and security practices.

One of the highlights for me was how well-structured and clear the course was. The labs and challenges were incredibly engaging and closely simulated real-world DevSecOps scenarios. From setting up secure CI/CD pipelines to integrating tools like ZAP, DefectDojo, and various security scanners, the course covered every essential aspect of DevSecOps. I learned so much about automating security checks, ensuring compliance, and following best practices — like running security scans without breaking the pipeline and storing results efficiently.

The step-by-step guidance made even complex concepts easy to understand, and the hands-on labs ensured I could confidently apply them.

Thank you to the instructors and course creators for putting together such a well-designed and practical course. This was a game-changer!

CDP related
This certification and course helped me to solidify some concepts I've been working with, but without the complete knowledge about them.
I can now help my teammates and dev teams to shift left security, and apply the techniques learned here.
The platform is really easy to use, the labs help you test a wide variety of tools, and the concepts are well explained and applicable to the professional world.

I recently passed the Certified DevSecOps Professional (CDP) certification, and it was a great experience! The course focused on securing DevOps processes, like embedding security tools in the CI/CD pipeline stages SCA,SAST/DAST, IaC and CaC.

The best part was the practical exam. It wasn’t just theory but real hands-on tasks that tested my skills. It helped me get better at spotting security issues and fixing them in an automated way.

If you want to learn how to add security to DevOps in a practical way, I highly recommend this course.

The Certified Threat Modeling Professional (CTMP) training is thorough and extensive, offering practical opportunities to apply what you’ve learned. It covers the latest industry tools and frameworks for Threat Modeling, providing knowledge that would have been difficult to gather independently.

The exam was both comprehensive and time-consuming, differing from typical multiple-choice tests. Instead, you were required to generate tangible outcomes and organize them into a final report.

I highly recommend this training to anyone seeking a deep understanding of Threat Modeling, as it equips you with the skills to immediately integrate your learning into your design process.

great course giving a comprehensive way of using and integrating devsecops tools.

I enjoyed learning about Cloud native security, especially K8 and it's associated tech stack.
The lessons were comprehensive, exhaustive and easy to follow.

The Certified Threat Modeling Professional (CTMP) exam was a great challenge and an enjoyable experience. The test truly pushes your understanding of threat modeling concepts, requiring both technical knowledge and strategic thinking.

The accompanying course is incredibly comprehensive, covering everything from foundational principles to practical applications. I highly recommend it to anyone looking to deepen their expertise in threat modeling. In fact, I believe it's unique in its kind, offering a structured and in-depth approach that few other certifications provide.

Great focus on "hands on" limiting theory to what's required. Labs are easy to follow with fully functioning environments.

The syllabus is so up to date, every subjects are delivered so well with complete example and labs.

Passing the exam challenges always comes with a great sense of accomplishment. The courses are very practical, enabling immediate improvements in your projects/organization. My manager likes to showcase the certification I did as well - to proof his organization is, if not ahead, keeping up with the technical development and can support and challenge the platform teams. Gained knowledge allows better visibility and assurance over cloud-native implementations.