Macquarie University
Cyber Security: DevSecOps
Macquarie University

Cyber Security: DevSecOps

本课程是 Cyber Security: DevOps 专项课程 的一部分

Matt Bushby

位教师:Matt Bushby

包含在 Coursera Plus

深入了解一个主题并学习基础知识。
初级 等级

推荐体验

2 周 完成
在 10 小时 一周
灵活的计划
自行安排学习进度
深入了解一个主题并学习基础知识。
初级 等级

推荐体验

2 周 完成
在 10 小时 一周
灵活的计划
自行安排学习进度

您将学到什么

  • Embed security across the software development lifecycle.

  • Use tools for secure coding, CI/CD pipelines, and IaC.

  • Analyse and manage risks in cloud-native environments.

  • Integrate automated scanning and secure deployment practices.

要了解的详细信息

可分享的证书

添加到您的领英档案

最近已更新!

June 2025

作业

6 项作业

授课语言:英语(English)

了解顶级公司的员工如何掌握热门技能

Petrobras, TATA, Danone, Capgemini, P&G 和 L'Oreal 的徽标

积累特定领域的专业知识

本课程是 Cyber Security: DevOps 专项课程 专项课程的一部分
在注册此课程时,您还会同时注册此专项课程。
  • 向行业专家学习新概念
  • 获得对主题或工具的基础理解
  • 通过实践项目培养工作相关技能
  • 获得可共享的职业证书

该课程共有6个模块

Security must start at the very beginning of the software development lifecycle. In this topic, you’ll explore the foundational principles of DevSecOps and learn how to integrate security thinking into every phase of development and operations. You’ll gain an understanding of the core objectives of DevSecOps, how modern development methodologies and tools impact security, and the importance of secure design practices from day one. The topic also covers critical practices like handling secrets securely and maintaining integrity in version control systems. By the end of this topic, you’ll have a clear grasp of how to embed security into agile and DevOps workflows, ensuring that protection isn’t an afterthought, but a continuous and collaborative part of delivering software.

涵盖的内容

1个作业15个插件

Building secure software requires more than just writing functional code, it demands a security-first mindset at every step of development. In this topic, you’ll dive into the principles and practices that strengthen software resilience, reduce vulnerabilities, and safeguard user data. You’ll explore essential techniques for secure coding, from implementing effective access controls and hardening APIs, to ensuring robust web application security. Real-world development scenarios will highlight how poor security decisions introduce risk and how best practices can prevent them. By the end of this topic, you’ll understand how to weave security into your development practices, making it a natural and non-negotiable part of delivering trusted, high-integrity software.

涵盖的内容

1个作业13个插件

In the fast-paced world of software delivery, security must be continuous, automated, and deeply integrated into the development pipeline. This topic focuses on the application-layer risks and protections within the DevSecOps workflow, ensuring vulnerabilities are caught early and often. You’ll explore how to implement continuous security, manage dependency integrity, and use static application analysis to detect weaknesses before code reaches production. The topic also examines the role of software repositories in maintaining trust and control across application components. By the end of this topic, you’ll understand how to shift security left, embedding it into every stage of application development to reduce risk and accelerate delivery.

涵盖的内容

1个作业10个插件

Modern software delivery relies on fast, automated pipelines, but speed must not come at the cost of security. This topic explores how to embed robust security controls into CI/CD pipelines, ensuring that security is a continuous, automated part of your build and deployment process. You’ll examine how tools like static scanners and dynamic application security testing (DAST) can be integrated into development workflows, and how to secure infrastructure using Infrastructure as Code (IaC) practices. Whether deploying to cloud or on-prem environments, you’ll learn how to protect the entire delivery pipeline from code to production. By the end of this topic, you’ll be equipped to design and operate secure, efficient DevSecOps pipelines that support rapid deployment without compromising on security.

涵盖的内容

1个作业9个插件

As cloud-native architectures become the norm, securing deployments in the cloud is essential for any modern DevSecOps strategy. This topic focuses on implementing security controls in Azure-based environments, with a strong emphasis on containerised applications and service mesh architectures. You’ll explore how to secure containers with Docker, manage application orchestration using Kubernetes, and address key aspects of cloud network security. The topic also examines how DevSecOps principles apply to the unique challenges of cloud infrastructure and dynamic workloads. By the end of this topic, you'll understand how to build and operate secure, scalable, and resilient cloud environments using DevSecOps best practices in Azure.

涵盖的内容

1个作业9个插件

Even with secure pipelines and best practices in place, cyber threats are constantly evolving. In this final topic, you’ll examine the landscape of threats and attack vectors targeting modern DevSecOps environments including those emerging in machine learning (ML) and AI-driven systems. You’ll learn how to evaluate security risks across the software delivery lifecycle, understand how AI is being used within DevSecOps, and explore the growing field of MLSecOps, the practice of securing machine learning models in production. By the end of this topic, you’ll be equipped to anticipate, evaluate, and respond to complex threats, ensuring your DevSecOps practices evolve alongside the technologies and risks shaping the future of software security.

涵盖的内容

1篇阅读材料1个作业9个插件

获得职业证书

将此证书添加到您的 LinkedIn 个人资料、简历或履历中。在社交媒体和绩效考核中分享。

位教师

Matt Bushby
Macquarie University
15 门课程7,437 名学生

提供方

从 Security 浏览更多内容

人们为什么选择 Coursera 来帮助自己实现职业发展

Felipe M.
自 2018开始学习的学生
''能够按照自己的速度和节奏学习课程是一次很棒的经历。只要符合自己的时间表和心情,我就可以学习。'
Jennifer J.
自 2020开始学习的学生
''我直接将从课程中学到的概念和技能应用到一个令人兴奋的新工作项目中。'
Larry W.
自 2021开始学习的学生
''如果我的大学不提供我需要的主题课程,Coursera 便是最好的去处之一。'
Chaitanya A.
''学习不仅仅是在工作中做的更好:它远不止于此。Coursera 让我无限制地学习。'
Coursera Plus

通过 Coursera Plus 开启新生涯

无限制访问 10,000+ 世界一流的课程、实践项目和就业就绪证书课程 - 所有这些都包含在您的订阅中

通过在线学位推动您的职业生涯

获取世界一流大学的学位 - 100% 在线

加入超过 3400 家选择 Coursera for Business 的全球公司

提升员工的技能,使其在数字经济中脱颖而出

常见问题