DSO 304 - Securing API Gateways in a DevSecOps Framework
APIs are a critical component of cloud computing, and modern development fueling the success of DevOps. This course enables learners to implement mechanisms to securely manage API requests through the use of API gateways in DevOps and serverless environments.
Upon successful completion of this course, learners will have the knowledge and skills required to meet compliance requirements while developing a DevSecOps mindset, including:
- Deployment of secure API gateways through the implementation of core features such as to request and response collapsing API Transformation, and Protocol Translation for microservice-based applications
- Implement secure Identity and Access Management (IAM) across all services
- Provide certificate management, secrets management, and encryption services
- Leverage APIs to gather, synthesize and alert on security-relevant events as part of a comprehensive cybersecurity risk management program