Dependency risk Architecture and Guardrails: Case Studies
RCCE students will learn secure CI/CD pipelines, infrastructure as code security, container hardening, supply chain risk management, and automated security testing. RCCE students will learn to integrate security into every phase of the software development lifecycle, shift security left with automated tooling, protect build and deployment pipelines from supply chain attacks, and build security automation that scales with development velocity. This architecture course teaches secure system design using proven patterns, guardrails, and reference architectures. At an expert level, RCCE students will learn to evaluate design options against security requirements, make informed trade-off decisions, and build systems that are resilient by design. Students gain the architectural thinking skills needed for security engineering and solution design roles.
- Security Engineers building defensive controls
- Security Analysts and Blue Team members
- Systems Administrators with security responsibilities
- GRC and Risk Professionals supporting controls
- Professionals implementing Dependency risk Architecture and Guardrails: Case Studies
- Design a scalable privilege management architecture with policy and enforcement
- Execute hands-on tasks for secure ci/cd pipelines & supply chain defense for rcce engineers
- Explain Course Overview & Learning Objectives fundamentals
- Execute hands-on tasks for course scope
- Execute hands-on tasks for learning outcomes — covering Dependency risk analysis & modeling.
- Execute hands-on tasks for dependency risk landscape
- Execute hands-on tasks for open source libraries
- Execute hands-on tasks for container images
- Execute hands-on tasks for build toolchain
- Execute hands-on tasks for package registries
- Design a scalable privilege management architecture with policy and enforcement, including Each handoff is a potential injection point.
| Module 01 | Dependency Risk Architecture |
| Module 02 | Secure CI/CD Pipelines & Supply Chain Defense for RCCE Engineers |
| Module 03 | Course Overview & Learning Objectives |
| Module 04 | Course Scope |
| Module 05 | Learning Outcomes |
| Module 06 | Dependency Risk Landscape |
| Module 07 | Open Source Libraries |
| Module 08 | Container Images |
| Module 09 | Build Toolchain |
| Module 10 | Package Registries |
| Module 11 | Software Supply Chain Architecture |
| Module 12 | Guardrail Architecture |
| Module 13 | SBOM-Driven Risk Architecture |
| Module 14 | SBOM Fundamentals |
All hands-on labs run on Rocheston Rose X OS. Students practice dependency risk architecture and guardrails: case studies by implementing the controls discussed in class, with a focus on real-world deployment, monitoring, and validation.
- Lab 1: Design a scalable privilege management architecture with policy and enforcement
- Lab 2: Execute hands-on tasks for secure ci/cd pipelines & supply chain defense for rcce engineers
- Lab 3: Explain Course Overview & Learning Objectives fundamentals
- Lab 4: Execute hands-on tasks for course scope
- Lab 5: Execute hands-on tasks for learning outcomes
Upon successful completion of this course, students will receive an official RCCE Course Completion Certificate for Dependency risk Architecture and Guardrails: Case Studies, verifiable through the Rocheston certification portal.
- Full access to all course materials and slide decks
- Hands-on lab access on Rocheston Rose X OS environment
- Access to Rocheston CyberNotes
- Access to Rocheston Zelfire — EDR/XDR SIEM platform
- Access to Rocheston Raven — online cyber range exercise platform
- Access to Rocheston Vulnerability Vines AI