This course explores the intersection of API security and DevSecOps, providing a practical framework for embedding security into every phase of the software development lifecycle. Led by veteran cybersecurity expert Scott Bly, the course draws from real-world experience across AWS, Noname Security, and SIS.
You'll learn why APIs are the top attack vector, how DevSecOps principles address modern security challenges, and what tools and strategies help detect and remediate vulnerabilities early—without slowing development.
Key Topics:
-
DevOps vs. DevSecOps: principles and culture
-
API security fundamentals: discovery, testing, runtime protection
-
Securing the SDLC with CI/CD integration
-
Practical guidance on Zero Trust, threat modeling, and automation
Ideal for developers, security engineers, and IT leaders, this course equips teams to build secure APIs and foster a collaborative, resilient DevSecOps culture.
Earn 2 CPE