Hands-On CI/CD
RCCE students will learn CI/CD pipeline security including build environment hardening, artifact integrity verification, secret management in pipelines, deployment authorization controls, and pipeline audit logging. RCCE students will learn to secure continuous integration and continuous deployment pipelines against supply chain attacks, harden build environments and runners, implement secret scanning to prevent credential leakage, verify artifact integrity through code signing and attestation, configure deployment gates and approval workflows, detect unauthorized pipeline modifications, audit pipeline execution logs for suspicious activity, and respond to incidents involving compromised CI/CD infrastructure. This practice-intensive course emphasizes applied skills through lab exercises, real-world scenarios, and production-realistic workflows. Building on core knowledge, RCCE students will learn by doing, building muscle memory and practical confidence through repeated hands-on engagement. Students complete exercises that mirror actual workplace tasks, ensuring skills transfer directly to their professional roles.
- Security Engineers building defensive controls
- Security Analysts and Blue Team members
- Systems Administrators with security responsibilities
- GRC and Risk Professionals supporting controls
- Professionals implementing Hands-On CI/CD
- Execute hands-on tasks for hands-on ci/cd pipeline security
- Execute hands-on tasks for advanced cyber defense mastery
- Explain Executive Overview fundamentals
- Execute hands-on tasks for course outcomes — covering CI/CD is the software supply chain, Harden build environments and runners.
- Execute hands-on tasks for business impact assessment — covering Supply chain attacks bypass perimeter security entirely.
- Execute hands-on tasks for core definitions
- Execute hands-on tasks for build runner
- Execute hands-on tasks for artifact attestation
- Execute hands-on tasks for secret scanning
- Design a scalable privilege management architecture with policy and enforcement
- Execute hands-on tasks for pipeline flow & trust boundaries
- Execute hands-on tasks for build environment hardening
| Module 01 | Hands-On CI/CD Pipeline Security |
| Module 02 | Advanced Cyber Defense Mastery |
| Module 03 | Executive Overview |
| Module 04 | Course Outcomes |
| Module 05 | Business Impact Assessment |
| Module 06 | Core Definitions |
| Module 07 | Build Runner |
| Module 08 | Artifact Attestation |
| Module 09 | Secret Scanning |
| Module 10 | CI/CD Architecture & Security Boundaries |
| Module 11 | Pipeline Flow & Trust Boundaries |
| Module 12 | Build Environment Hardening |
| Module 13 | Hardening Principles |
| Module 14 | GitHub Actions Hardened Runner |
All hands-on labs run on Rocheston Rose X OS. Students practice hands-on ci/cd by implementing the controls discussed in class, with a focus on real-world deployment, monitoring, and validation.
- Lab 1: Execute hands-on tasks for hands-on ci/cd pipeline security
- Lab 2: Execute hands-on tasks for advanced cyber defense mastery
- Lab 3: Explain Executive Overview fundamentals
- Lab 4: Execute hands-on tasks for course outcomes
- Lab 5: Execute hands-on tasks for business impact assessment
Upon successful completion of this course, students will receive an official RCCE Course Completion Certificate for Hands-On CI/CD, verifiable through the Rocheston certification portal.
- Full access to all course materials and slide decks
- Hands-on lab access on Rocheston Rose X OS environment
- Access to Rocheston CyberNotes
- Access to Rocheston Zelfire — EDR/XDR SIEM platform
- Access to Rocheston Raven — online cyber range exercise platform
- Access to Rocheston Vulnerability Vines AI