Cloud Code Security
Learn how to secure IaC code throughout the CI/CD pipeline and reduce applications' attack surface.
GET HANDS-ON
Search
Cloud Native Security Bootcamp,DevSecOps Bootcamp,DevSecOps Boot Camp
WHY ARE WE HERE?
ABOUT THE BOOTCAMPS
Explore Prisma® Cloud, the industry’s leading Cloud Native Application Protection Platform, during a hands-on Prisma Cloud Security Bootcamp of your choice. The options:
Cloud Native Security Bootcamp: Examine and discuss cloud native security principles, experience a robust product demonstration and then test your knowledge while playing capture the flag.
DevSecOps Bootcamp: Join a discussion focused on the principles of DevSecOps, learn how Prisma Cloud supports those principles and delve into the product’s capabilities during a lab exercise.
No matter which cloud security bootcamp you choose, you’ll receive a wealth of information in a fun and interactive way.
CLOUD NATIVE SECURITY BOOTCAMP
Audience
- Practitioners in Cloud/Cloud Security
- Engineer/Developer
- IT/Infrastructure Ops
Description
This interactive workshop includes an instructor-led presentation on cloud native security principles, an educational product demonstration and a capture-the-flag activity.
Presentation
The presentation is 20–25 minutes and covers cloud native security principles throughout the lifecycle of application development, from build to runtime protection. The five pillars of the Prisma Cloud platform—Cloud Code Security, Cloud Security Posture Management, Cloud Workload Protection, Cloud Network Security and Cloud Identity Security—are introduced at the end of the presentation.
Demo
The demo is 15–20 minutes and covers the five pillars of the Prisma Cloud at a high level, introducing the key modules of each of the five pillars—Cloud Code Security, Cloud Security Posture Management, Cloud Workload Protection, Cloud Network Security and Cloud Identity Security.
Exercise
The exercise is a 45-min story-based game of capture the flag and covers the pillars of the Prisma Cloud platform while solving a real-world use case.
What we’ll cover
1
2
Cloud Security Posture Management
Find and learn how to remediate cloud misconfigurations as well as identify malicious threats while exploring Prisma Cloud’s CSPM features.
3
Cloud Workload Protection
Runtime protection is a cornerstone of security, explore Prisma Cloud’s vast capabilities for runtime protection across virtually any application and tech stack.
4
Cloud Network Security
Learn about microsegmentation and how to prevent malware propagation in cloud native application architectures
5
Cloud Identity Security
Identity is the new edge, find out how Prisma Cloud can help audit your least privilege policy and help achieve secure multi-cloud infrastructure entitlement
6
Making a Plan
By the end of this short workshop you will be armed with the information you need to define a new Cloud Native Security strategy and achieve a new secure tomorrow
DEVSECOPS BOOTCAMP
Audience
- Practitioners in Cloud/Cloud Security
- Engineer/Developer
- IT/Infrastructure Ops
Description
The workshop is an instructor-led presentation on DevSecOps principles and includes a product demonstration and a short lab exercise.
Presentation
The presentation is 20–25 mins and covers DevSecOps principles focusing on the application of security throughout the CI/CD pipeline including, Build, Deploy and Run phases. Each phase is explained in detail, and security best practices are evangelized. At the end of the presentation, Bridgecrew and Prisma Cloud capabilities are explained
Demo
The demo is 15–20 minutes and covers a quick demonstration of CI/CD security capabilities with Bridgecrew and Prisma Cloud. This includes an IDE plugin demo, CI tool integration (Jenkins), and the interactive IaC dashboard and remediation capabilities within Prisma Cloud.
Exercise
The exercise is 20 mins and includes a short, guided lab exercise where the participants inspect IaC templates and scanning capabilities within the Prisma Cloud platform.
What we’ll cover
1
Infrastructure as Code Security
Learn how Prisma Cloud can help identify and fix security misconfigurations found within IaC templates in development and in pipelines
2
CI/CD Security
Find out how Prisma Cloud can scan for serverless, container and VM image vulnerabilities or compliance issues locally or within your CI/CD pipelines
3
Code Repository Scanning
Identify vulnerabilities and open source license compliance in library dependencies across popular languages with Code Repository Scanning with Prisma Cloud
4
Making a Plan
By the end of this short DevSecOps workshop you will have the information you need to build a plan for applying security throughout entire application lifecycle securing workloads from build to runtime