AZ-2001 Implement security through a pipeline using Azure DevOps

Price
Net
VAT

Price
Price on Request

Duration
1 day

For companies and job seekers:
this course is 100% fundable!
 

Location

Course Language
English

Training Solutions
Online Live

Request a consultation Add to favorites Print as PDF

Secure software delivery is a key success factor in modern IT landscapes. Automated workflows combine development, operation, and security to create stable, traceable processes. The focus is on integrated security throughout the entire development cycle.

Key topics

  • Security strategies in CI/CD pipelines.
  • Automated checks and guidelines.
  • Identity and access management.
  • Secrets, keys, and secure configurations.
  • Compliance, monitoring, and traceability.

Prerequisites
Basic knowledge of DevOps methods, version management, and cloud environments, as well as a technical understanding of build and release processes.

Target audience
IT professionals from development, operations, and cloud engineering with responsibility for stable, secure deployment processes.

Modern pipelines combine speed with security. Clear structures, automated controls, and end-to-end transparency strengthen trust, quality, and scalability of digital solutions in dynamic cloud environments.

Print as PDF
Course content
  • Organizing the project and repository structure
  • Configuring secure projects and repositories
  • Configure a Microsoft-hosted pool
  • Configuring agents for projects
  • Configure agent identities
  • Configure the scope of a service connection
  • Understanding and converting to a managed identity
  • Configure agent pools
  • Using secret variables and variable groups
  • Understanding secure files
  • Configuring service connections
  • Managing environments
  • Securing repositories
  • Define and verify user permissions
  • Configure and validate pipeline permissions
  • Configure and validate approval and branching checks
  • Manage and review permissions
  • Creating a nested template
  • Rewriting the main distribution pipeline
  • Configuring the pipeline and application to use tokenization
  • Removing plaintext secrets
  • Restricting agent logging
  • Identifying and conditionally removing script tasks
  • Configuring pipeline access to packages
  • Configuring pipeline access to login secrets
  • Configure pipeline access to secrets for services
  • Use Azure Key Vault to secure secrets
  • Examine and secure log files
  • Ensuring parameter and variable types
  • Identifying and restricting the unsafe use of parameters and variables
  • Move parameters to a YAML file
  • Limiting variables for queue times
  • Validating mandatory variables
Berlin
Bremen
Dortmund
Dusseldorf
Frankfurt
Hamburg
Hanover
Cologne
Leipzig
Munich
Nuremberg
Stuttgart

Do you have any further questions? Please contact us.