practical-devsecops.com レビュー 717

The experience with the instructor was very thorough. All the preparation for the final exam was meticulous and with the right personal reading, it ensured your success in the final exam.

The lab courses and practical labs were useful. I liked how the course had set up a lab for the participants to play around. The courses are up to date and they are real world scenarios.

it was pretty good course and exam

I was one of the early "Alpha" or "Beta" students, and at the time, the course was still under development, with content released progressively—chapter by chapter. As such, I chose to wait until the course was fully completed before beginning. After the course was finalized, I received a follow-up email from Practical DevSecOps, which showed their effort in keeping early students updated.

During my learning journey, I noticed that course materials were occasionally moved or updated. If you're planning to enroll, do be aware that the course is relatively new and actively maintained. The team frequently refreshes and improves the content, which is a positive sign of commitment to quality. Just keep in mind that you might see your course progress drop (e.g., from 100% to 90%) when new content is added—this is normal and reflects ongoing updates, not missing progress.

In terms of content, this course is one of the few that offers hands-on, practical experience in this domain. Personally, I found it worth the investment. Although I later discovered a cheaper alternative, I have no regrets about choosing this program.

Key topics I learned include:

Building Large Language Models (LLMs)

Implementing Retrieval-Augmented Generation (RAG)

Checking for outdated packages and dependencies

Detecting toxicity and evaluating model accuracy

Most importantly: vulnerability scanning using a variety of tools, and applying appropriate patches

Overall, it’s a solid course for those seeking hands-on skills in secure AI development and operations.

Great content, for beginner to mid-level DevSecOps engineers, exam could've been much better TBH

The labs were the difference makers. concepts got easy to understand using labs

Great content, easy to understand, great applicability

I recently completed the Certified DevSecOps Professional (CDP) certification, and I found it to be an exceptionally hands-on and well-structured program that delivers both breadth and depth across modern DevSecOps practices.

The course stands out for its practical, lab-driven approach. Rather than just theory, it dives into real-world tools and scenarios — including CI/CD pipeline integration, container security, static/dynamic analysis, Infrastructure-as-Code (IaC) scanning, and runtime security monitoring. Each module is supported with detailed walkthroughs, example scripts, and guided labs, which made the learning process not only interactive but also applicable to real environments.

What I appreciated most was the quality and completeness of the training materials. The documentation is thoughtfully organized and rich with diagrams, code snippets, and tool comparisons, making it easy to reference even after the course. Whether you're new to DevSecOps or looking to strengthen your implementation knowledge, the materials provide a solid foundation.

The certification reinforces security as a shared responsibility across development and operations, emphasizing automation and continuous security integration. Overall, it’s a valuable investment for professionals aiming to build or enhance secure DevOps pipelines in their organization.

Whether you are just bootstrapping your Supply Chain Security knowledge or working towards increasing the maturity of your org's processes this course is highly recommended!

As with most PDSO courses, this was jam packed with materials, hands on practice, tool exposures, threat modeling, attacks & defenses, and related framework information.

The coursework can mostly be tied to Code, Container, Cluster, and Cloud (aka “The 4C’s of Cloud Native Security).

There were a ton of cool things in this course. All of the hands-on tool exposure is a given. Besides that, I found the concept of software provenance to be a nice escalation from the SBOM-centric state that the industry has embraced (particularly after log4j).

It was also really cool to get increased exposure to frameworks such as SLSA, NIST SSDF, SCVSD, OpenSSF S2C2F, SCITT, DORA, and CII.

I have recently completed CAISP course. Well structured course! Cover vast areas include Red team activities, mitigations, security best practices. Best course for AI security.

The certification boosted my confidence. Previously, my experience was limited to Jenkins pipelines and a few licensed security tools. Through the labs, I gained practical hands-on to GitLab CI/CD, GitHub Actions, and a variety of FOSS tools. I also developed a much deeper understanding of how CI/CD and DevOps work in real-world environments.
The standout aspects of the program were the labs, the environment setup, and the support channel. Attempting the practice exam twice really helped me prepare for the certification exam.
One suggestion for improvement would be to include more challenges and tasks. I found that solving problems without relying on hints was especially valuable for my learning.
This certification has a positive impact on my organization’s AppSec vertical. We now have the capability to integrate security tools directly into project teams’ CI/CD pipelines.

CAISP is a great introductory course of AI Security. Great for anyone who is interested to learn the overall AI security fundamentals like LLM, RAG, NLP, prompt injection, and more as well as get certified with hands on labs.

The CDP course provides a great hands-on lab environment and well-structured material, making it ideal for learning and practicing DevSecOps in real-world scenarios.

The CAISP course provides a great combination of theory and practice. It covers various aspects of AI security.

I recently completed the Certified DevSecOps Professional (CDP) exam from Practical DevSecOps, and the experience was outstanding! The course material was comprehensive, well-structured, and covered all the essential aspects of DevSecOps, from CI/CD security to threat modeling and compliance.

The hands-on labs were particularly valuable, providing real-world scenarios that helped solidify my understanding. The instructors were knowledgeable and supportive, offering clear explanations and prompt assistance whenever needed.

Thanks to this training, I not only passed the CDP exam but also gained practical skills that I’ve already started applying in my work. Highly recommend Practical DevSecOps to anyone looking to advance their career in DevSecOps!

The course is highly relevant to the challenges security experts are facing today.

The material is up to date and give great understanding for business context and technical depth.

It enabled me to clearly understand and address emerging risks and threats related to AI.

I found the Certified DevSecOps Professional course to be highly practical and well-structured. The hands-on labs were the highlight, allowing me to apply security concepts directly into DevOps pipelines and tools. The content is up to date, relevant to real-world scenarios, and the progression of topics was smooth and logical. I appreciated the focus on real implementation rather than just theory. It’s a great course for professionals with some DevOps background who want to build strong DevSecOps skills. I definitely recommend it to anyone looking to bridge the gap between development, operations, and security.

The support community on mattermost is amazing, every query was responded to within a couple minutes. I waited at most 15 mins before a reply.
Course content is also very relevant and interesting. The labs offer an environment to experiment and explore the tools.

The course is well-designed with clear content and hands-on labs that help reinforce learning. The team is supportive and quick to respond. Lab access is available for 3 months, which encourages focused learning. Overall, a great resource for building DevSecOps skills.

I learned how to embed security to Devops and that was amazing part.