DevSecOps—Testing and Tools Foundations

Course Description

Why choose ALPI for DevSecOps training?
  • We use experienced, live, instructors for both virtual and in-person classes so you can ask questions and get answers right away.
  • We focus on real-world examples.
  • We teach using interactive, hands-on exercises.
  • We provide a fully configured and functioning environment for class—no installation required on your computer.
  • This ALPI course is eligible for a free refresher guarantee so you can re-take the course within 4 months at no additional charge. Contact us for information about this unique benefit that gives you peace of mind.

This hands-on workshop is designed to teach participants foundational knowledge and application of testing and test tools across the Development, Operations, and Security (DevSecOps) testing lifecycle. Participants will each have a dedicated, fully configured, environment from which to learn and use various test tools used throughtout DevSecOps. Tools include Eclipse, Git, Jira, Jenkins, Selenium, JMeter, NMAP, and more!


4 day(s)


9 - 5 ET




This workshop is offered as a series of hands-on “projects” that require participants to understand the overall lifecycle progression and test tool considerations and use this knowledge to apply proper testing tools and practices across DevSecOps.

Intended Audience

The target audience for this course includes:
  • Test Engineers
  • Automated Test Engineers
  • Software Developers


A background in programming (e.g. Java or similar language) and/or scripting and an understanding of software testing tools.



  • Understanding the DevSecOps philosophy
  • How Integrated Development Environments (IDEs) work with code repositories
  • Basic programing concepts and languages
  • Tools that engineers use for automation and deployment

Understanding the Software Lifecycle within DevSecOps

  • How Agile teams plan
  • How development teams keep code organized
  • How testing teams directly support the development process
  • Automating the build and release process

Software Management Concepts

  • Continuous Integration and Delivery (CI/CD)
  • Understanding the meaning of CI/CD artifacts
  • Automated management of application configurations
  • Establishing a change management process

Types of Testing

  • Scope of functional UI testing
  • Understanding API architecture and testing approaches
  • Performance testing to simulate multiple users and establish baselines
  • Security testing with static and dynamic code analysis

Pipeline Configuration

  • Installation of a Continuous Integration Server
  • Integration of Selenium for UI testing
  • Integration of JMeter for API and performance testing
  • Integration of APP INSPECT / NMAP for security testing
  • Integration of Build Artifacts (reporting/logs)

Managing Pipeline Information

  • Repository management practices
  • Developing automated rules for deployment to environments
  • Maintenance aspects of automated testing and impact to the pipeline
  • Understanding API responses and impact on deployment
  • Impact of performance thresholds on deployment

Process Summary

  • Maintaining build history and drawing conclusions
  • Traceability between artifacts, reports, test results, and source code
  • Managing multiple pipelines
  • Discussing interdependent repositories