Got a question? Call 02 8286 9429   |   

DevSecOps Foundation (DSOF)

  • Length 2 days
  • Inclusions Exam voucher
Course overview
View dates &
book now
  • Register interest

Why study this course

DevSecOps Foundation (DSOF)℠ will introduce the purpose, benefits, concepts, and vocabulary of DevSecOps including DevOps security strategies and business benefits.

As companies deploy code faster and more often than ever, new vulnerabilities are also accelerating. When the boss says, “Do more with less”, DevOps practices add business and security value as an integral, strategic component. Delivering development, security, and operations at the speed of business should be an essential component for any modern enterprise.

Course topics covered include how DevSecOps provides business value, enhancing your business opportunities, and improving corporate value. The core DevSecOps principles taught can support an organisational transformation, increase productivity, reduce risk, and optimise resource usage.

This course explains how DevOps security practices differ from other approaches then delivers the education needed to apply changes to your organisation. Participants learn the purpose, benefits, concepts, vocabulary and applications of DevSecOps. Most importantly, students learn how DevSecOps roles fit with a DevOps culture and organisation. At the course’s end, participants will understand “security as code” to make security and compliance value consumable as a service.

No course would be complete without practical application and this course teaches the steps to integrate security programs from the developers and operators through the business C-level. Every stakeholder plays a part and the learning material highlights how professionals can use these tools as the primary means of protecting the organisation and customer through multiple case studies, video presentations, discussion options, and exercise material to maximise learning value. These real-life scenarios create tangible takeaways participants can leverage upon their return to the office.

Included with this course:

  • Digital Learner Manual (excellent post-class reference)

  • Participation in exercises designed to apply concepts

  • Exam voucher

  • Sample documents, templates, tools and techniques

  • Access to additional sources of information and communities


This course pricing includes an exam voucher to sit an online proctored exam through the DevOps Institute. The voucher is valid for 90 days. A sample exam paper will be discussed during class to assist with preparation.

  • Open book

  • 60 minutes

  • 40 multiple-choice questions

  • Answer 26 questions correctly (65%) to pass and be designated as DevSecOps Foundation (DSOF) certified

Request Course Information

By submitting an enquiry, you agree to our privacy policy and receiving email and other forms of communication from us. You can opt-out at any time.

What you’ll learn

Participants will develop a practical understanding of:

  • The purpose, benefits, concepts, and vocabulary of DevSecOps

  • How DevOps security practices differ from other security approaches

  • Business-driven security strategies and Best Practices

  • Understanding and applying data and security sciences

  • Integrating corporate stakeholders into DevSecOps Practices

  • Enhancing communication between Dev, Sec, and Ops teams

  • How DevSecOps roles fit with a DevOps culture and organisation

DevOps Institute at DDLS

DevOps is the cultural and professional movement that stresses communication, collaboration, integration and automation in order to improve the flow of work between software developers and IT operations professionals. DevOps certifications are offered by the DevOps Institute (DOI), which brings enterprise level DevOps training and certification to the IT market.

Stay ahead of the technology curve

Don’t let your tech outpace the skills of your people

Quality instructors and content

Expert instructors with real world experience and the latest vendor- approved in-depth course content.

Partner-Preferred Supplier

Chosen and awarded by the world’s leading vendors as preferred training partner.

Ahead of the technology curve

No matter your chosen technologies or platforms, we can help you stay one step ahead.

Who is the course for?

Professionals including:

  • Anyone involved or interested in learning about DevSecOps strategies and automation

  • Anyone involved in Continuous Delivery toolchain architectures

  • Compliance Team

  • Business Managers

  • Delivery Staff

  • DevOps Engineers

  • IT Managers

  • IT Security Professionals, Practitioners, and Managers

  • Maintenance and support staff

  • Managed Service Providers

  • Project and Product Managers

  • Quality Assurance Teams

  • Release Managers

  • Scrum Masters

  • Site Reliability Engineers

  • Software Engineers

  • Testers

We can also deliver and customise this training course for larger groups – saving your organisation time, money and resources. For more information, please contact us via email on


Course subjects

Realising DevSecOps Outcomes

  • Origins of DevOps

  • Evolution of DevSecOps


  • The Three Ways

Defining the Cyber Threat Landscape

  • What is the Cyber Threat Landscape?

  • What is the threat?

  • What do we protect from?

  • What do we protect, and why?

  • How do I talk to security?

Building a Responsive DevSecOps Model

  • Demonstrate Model

  • Technical, business and human outcomes

  • What’s being measured?

  • Gating and thresholding

Integrating DevSecOps Stakeholders

  • The DevSecOps State of Mind

  • The DevSecOps Stakeholders

  • What’s at stake for who?

  • Participating in the DevSecOps model

Establishing DevSecOps Best Practices

  • Start where you are

  • Integrating people, process and technology and governance

  • DevSecOps operating model

  • Communication practices and boundaries

  • Focusing on outcomes

Best Practices to get Started

  • The Three Ways

  • Identifying target states

  • Value stream-centric thinking

DevOps Pipelines and Continuous Compliance

  • The goal of a DevOps pipeline

  • Why continuous compliance is important

  • Archetypes and reference architectures

  • Coordinating DevOps Pipeline construction

  • DevSecOps tool categories, types and examples

Learning Using Outcomes

  • Security Training Options

  • Training as Policy

  • Experiential Learning

  • Cross-Skilling

  • The DevSecOps Collective Body of Knowledge

Preparing for the DevSecOps Foundation exam


Participants should have baseline knowledge and understanding of common DevOps definitions and principles.


This course has pre-reading or other preparation requirements which should be completed before you commence your course with us.

Please click here to view.

Terms & Conditions

The supply of this course by DDLS is governed by the booking terms and conditions. Please read the terms and conditions carefully before enrolling in this course, as enrolment in the course is conditional on acceptance of these terms and conditions.

Request Course Information

By submitting an enquiry, you agree to our privacy policy and receiving email and other forms of communication from us. You can opt-out at any time.