Practical DevSecOps Certifications

Practical DevSecOps ​(a Hysn Technologies Inc company) offers vendor-neutral, practical, and hands-on DevSecOps training and certification programs for IT Professionals. Our online training and certifications are focused on modern areas of information security, including DevOps Security, Cloud-Native Security, Cloud Security & Container security. The certifications are achieved after rigorous tests(12-24 hour exams) of skill and are considered the most valuable in the information security field.

These certifications have been sorted in order of recency, showcasing my most recent accomplishments first.

Certified Threat Modeling Professional (CTMP)

  • The Certified Threat Modeling Professional (CTMP) is a vendor-neutral certification program that validates the threat modeling expertise of an IT professional. The CTMP holder has the ability to understand, apply and manage threat modeling programs in traditional and modern organizations. A CTMP professional can identify your potential weaknesses, develop strategies to mitigate threats, and improve overall security.

    • Agile Threat Modeling

    • DevSecOps

    • DREAD

    • Hybrid Threat Modeling

    • OWASP ASVS

    • Product Security

    • RTMP

    • Secure SDLC

    • Security Champions

    • STRIDE

    • Threat Modeling

    • Threat Modeling as Code

    • Threat Modeling Deliverables

    • Threat Modeling Manifesto

    • Threat Modeling Reporting

    • UML as Code

    • Vulnerability Management

  • January 18, 2023

  • This certificate does not expire.

Certified Container Security Expert (CCSE)

  • The CCSE credential validates the practical expertise to understand, implement and manage the container security program in an organization. A CCSE can assess the current state of container security, securely manage container security workloads, manage vulnerabilities and improve the overall Maturity Level. The CCSE certification demonstrates the ability to use container security tools, techniques, and tactics to audit, secure, and monitor containers in production environments.

    • Application Security

    • Container Breakouts

    • Container Registry Security

    • Container Runtime Security

    • Container Security

    • Container Security Misconfigurations

    • Container Security NIST

    • Container Security Tools

    • DAST (Dynamic Analysis)

    • DevOps Engineer

    • DevSecOps Engineer

    • Docker Registry Security

    • Docker Security

    • Product Security

    • Product Security Engineer

    • SCA

    • SAST (Static Application Security Testing)

    • Security as Code

    • Vulnerability Management

  • June 22, 2022

  • This certificate does not expire.

Certified DevSecOps Professional (CDP)

  • The CDP credential validates the practical expertise to understand, implement and manage the DevSecOps program in an organization. A CDP can assess the current state of DevSecOps, embed security as part of DevOps, manage vulnerabilities and improve the overall Maturity Level. CDP holders can also identify gaps in secure SDLC implementation, Implement security as part of DevOps using Software Component Analysis, Static Analysis, Dynamic Analysis tools, Infrastructure as Code & Compliance as code.

    • Ansible

    • Application Security

    • CI/CD Pipelines

    • Compliance as Code

    • DAST (Dynamic Application Security Testing)

    • DevOps Security

    • DevSecOps

    • DevSecOps Engineer

    • Infrastructure as Code

    • Product Security

    • SAST (Static Application Security Testing)

    • SCA (Software Component Analysis)

    • Secure DevOps

    • Secure SDLC

    • Security as Code

    • Vulnerability Management

  • February 22, 2022

  • This certificate does not expire.