Are you building or deploying applications on Kubernetes? Whether you're a DevOps Engineer, Platform Engineer, or AI/ML Engineer, security can no longer be an afterthought.

This hands-on DevSecOps Bootcamp will help you build secure, production-ready CI/CD pipelines using open-source tools and industry best practices. Learn how to integrate security across the software development lifecycle and ensure your applications are secure by design.

We will walk you through step-by-step labs that combine Jenkins, Kubernetes, ArgoCD, Vault, Trivy, Falco, OWASP ZAP, and other essential tools used in modern DevSecOps workflows.

This course is ideal for teams building cloud-native applications, AI/ML models, or any containerized workload that needs to be deployed securely at scale.

What You Will Learn:

• Core DevSecOps principles and the secure software delivery lifecycle

• How to build a CI/CD pipeline with Jenkins on Kubernetes

• Software Composition Analysis (SCA) using OWASP Dependency-Check, Pyraider, and Dependency-Track

• Static and Dynamic Application Security Testing (SAST & DAST) using slscan and OWASP ZAP

• Securing container images using Trivy, Dockle, and multi-stage Dockerfiles

• Enforcing compliance as code using InSpec and Ansible

• Secrets management using HashiCorp Vault and Kubernetes RBAC

• Runtime security monitoring using Falco with automated response pipelines

• Secure deployment workflows with GitOps using ArgoCD and Kubernetes

Core DevSecOps principles and the secure software delivery lifecycle

How to build a CI/CD pipeline with Jenkins on Kubernetes

Software Composition Analysis (SCA) using OWASP Dependency-Check, Pyraider, and Dependency-Track

Static and Dynamic Application Security Testing (SAST & DAST) using slscan and OWASP ZAP

Securing container images using Trivy, Dockle, and multi-stage Dockerfiles

Enforcing compliance as code using InSpec and Ansible

Secrets management using HashiCorp Vault and Kubernetes RBAC

Runtime security monitoring using Falco with automated response pipelines

Secure deployment workflows with GitOps using ArgoCD and Kubernetes

Tools and Technologies You Will Use:

• Jenkins, Helm, Kubernetes (GKE), ArgoCD

• Trivy, Dockle, OWASP ZAP, slscan, Pyraider

• Vault, InSpec, Ansible, Falco, Argo Workflows

• Docker, Kubernetes RBAC, GitHub, GitOps

Jenkins, Helm, Kubernetes (GKE), ArgoCD

Trivy, Dockle, OWASP ZAP, slscan, Pyraider

Vault, InSpec, Ansible, Falco, Argo Workflows

Docker, Kubernetes RBAC, GitHub, GitOps

Who Should Take This Course:

• DevOps and Cloud Engineers who want to add security to their toolbelt

• AI/ML Engineers deploying models and services on Kubernetes

• Platform Engineers managing modern microservices at scale

• Security Engineers transitioning to DevSecOps practices

• Developers building containerized applications for production

DevOps and Cloud Engineers who want to add security to their toolbelt

AI/ML Engineers deploying models and services on Kubernetes

Platform Engineers managing modern microservices at scale

Security Engineers transitioning to DevSecOps practices

Developers building containerized applications for production

This is not a theoretical course. You will be working on real-world labs and projects that simulate what modern engineering teams do to secure their software pipelines in production environments.

Whether you're deploying a machine learning model, a microservice, or a SaaS product — this course will help you ensure that your deployments are secure, scalable, and compliant.