Passed GCSA this morning

scascscasc Member Posts: 413 ■■■■■■□□□□
Hi all, 

Highly recommend the above cert to anyone who is interested in gaining a deep dive into the world of cloud security and devsecops. The material was immense with some excellent labs that really reinforced the shift to push towards the route of CI/CD with validation points at each stage of the pipeline to thus ensure changes to code are promoted in a secure fashion. 

This was a steep learning curve for me, however over the last 6.5 weeks have tried to understand how each piece fits together - from IaaC (Infra as code), to CM (Config management) to containers and separation of workloads etc. Particularly liked day 5 - compliance as a code when the use of cloud custodian/cloud mapper, Inspec was suggested and used to find deviances to your baseline and CIS for example. Something to further develop my end going forward...

Got 83% in both practice papers and 89% in final exam.

Any questions feel free as always to ask....
MSc, BSc (Hons), C-CISO, CISSP, CCSP, CCSK, CISM, CISA, CRISC, GSTRT, GSNA, GDSA, GCSA, GCCC, GCLD, GPCS, CEH, ECSA, CHFI, TOGAF, SABSA-SCF, CISMP

Comments

  • Kinet1cKinet1c Member Posts: 604 ■■■■□□□□□□
    Did you take SEC540 in preparation for this or was it all self study?
    2018 Goals - Learn all the Hashicorp products

    Luck is what happens when preparation meets opportunity
  • scascscasc Member Posts: 413 ■■■■■■□□□□
    Hi. I attended the actual Sans course. 
    MSc, BSc (Hons), C-CISO, CISSP, CCSP, CCSK, CISM, CISA, CRISC, GSTRT, GSNA, GDSA, GCSA, GCCC, GCLD, GPCS, CEH, ECSA, CHFI, TOGAF, SABSA-SCF, CISMP
Sign In or Register to comment.