Passed GCSA this morning
Hi all,
Highly recommend the above cert to anyone who is interested in gaining a deep dive into the world of cloud security and devsecops. The material was immense with some excellent labs that really reinforced the shift to push towards the route of CI/CD with validation points at each stage of the pipeline to thus ensure changes to code are promoted in a secure fashion.
This was a steep learning curve for me, however over the last 6.5 weeks have tried to understand how each piece fits together - from IaaC (Infra as code), to CM (Config management) to containers and separation of workloads etc. Particularly liked day 5 - compliance as a code when the use of cloud custodian/cloud mapper, Inspec was suggested and used to find deviances to your baseline and CIS for example. Something to further develop my end going forward...
Got 83% in both practice papers and 89% in final exam.
Any questions feel free as always to ask....
Highly recommend the above cert to anyone who is interested in gaining a deep dive into the world of cloud security and devsecops. The material was immense with some excellent labs that really reinforced the shift to push towards the route of CI/CD with validation points at each stage of the pipeline to thus ensure changes to code are promoted in a secure fashion.
This was a steep learning curve for me, however over the last 6.5 weeks have tried to understand how each piece fits together - from IaaC (Infra as code), to CM (Config management) to containers and separation of workloads etc. Particularly liked day 5 - compliance as a code when the use of cloud custodian/cloud mapper, Inspec was suggested and used to find deviances to your baseline and CIS for example. Something to further develop my end going forward...
Got 83% in both practice papers and 89% in final exam.
Any questions feel free as always to ask....
AWS, Azure, GCP, ISC2, GIAC, ISACA, TOGAF, SABSA, EC-Council, Comptia...
Comments
-
Kinet1c
Member Posts: 604 ■■■■□□□□□□
Did you take SEC540 in preparation for this or was it all self study?2018 Goals - Learn all the Hashicorp products
Luck is what happens when preparation meets opportunity -
scasc
Member Posts: 465 ■■■■■■■□□□
Hi. I attended the actual Sans course.AWS, Azure, GCP, ISC2, GIAC, ISACA, TOGAF, SABSA, EC-Council, Comptia...