Prerequisites

Author: Damien Burks

Overview

Before diving into the core concepts and theories of DevSecOps, it's important to build a solid foundation with some essential background knowledge. The topics/concepts that I am going to recommend will be extremely beneficial for you to understand.. It'll also help you with going through the docs and understanding the flow as well.

Concepts You'll Need To Know

Concept	Reason(s) You Need To Know It	Resources
DevOps	DevOps is the foundation of DevSecOps. It's necessary that you understand what this means and what it implies.	The DevOps Guide - What is DevOps? Learn To Cloud - Phase 4 What is DevOps? REALLY understand it - DevOps vs SRE
Version Control System (Git)	You'll need to understand what Version Control is, and have a fundamental understanding of Git. Understanding this concepts will help you understand how the files are checked out from a VCS (Version Control System) during pipeline builds.	The DevOps Guide - Version Control System
CI/CD	You'll need to understand what Continous Integration (CI) and Continous Delivery (CD) is before we move forward.	The DevOps Guide - CI/CD
Linux and Bash Scripting	Familiarity with Linux is essential, as it's a common environment in DevSecOps workflows. You'll need to know how to navigate the Linux command line, manage files and processes, and automate tasks using Bash scripting. This knowledge will be key as you begin to secure and automate processes within your infrastructure.	What is Linux? Learn To Cloud - Phase 1
Programming Concepts	A basic understanding of programming is necessary for DevSecOps. You'll be working with various scripts, tools, and automation processes that require coding skills. Whether you're familiar with Python, Java, or another language, being comfortable with programming concepts will enable you to create and manage secure, automated workflows effectively.	Introduction to Programming and Computer Science The Complete Python Bootcamp From Zero to Hero in Python Learn To Cloud - Phase 2 Introduction to Programming and Computer Science - Full Course
Networking	Understanding the basics of networking is vital for securing and managing infrastructure. You'll need to know about IP addressing, DNS, firewalls, and common protocols (HTTP, HTTPS, FTP). This knowledge will help you configure and secure networks, which is a critical aspect of DevSecOps practices.	Computer Networks: Crash Course Computer Science Introduction to Network Security
Basic Security Concepts	A solid grasp of fundamental security concepts is essential. This includes knowledge of encryption, authentication, access control, and common security threats like malware and phishing. Understanding these concepts will enable you to identify potential vulnerabilities and implement security measures to protect your infrastructure and applications.	What Is Cyber Security? Cybersecurity: Crash Course Computer Science #31
Cloud Computing	If we wish to pursue the Cloud DevSecOps, then you definitely need to understand the Cloud. The knowledge that you'll help you build scalable DevSecOps solutions within the Cloud by leveraging existing services to protect your applications.	Learn To Cloud