Practical Infrastructure as Code Workshop
RCCE students will learn secure CI/CD pipelines, infrastructure as code security, container hardening, supply chain risk management, and automated security testing. RCCE students will learn to integrate security into every phase of the software development lifecycle, shift security left with automated tooling, protect build and deployment pipelines from supply chain attacks, and build security automation that scales with development velocity. This practice-intensive course emphasizes applied skills through lab exercises, real-world scenarios, and production-realistic workflows. Starting from foundational concepts, RCCE students will learn by doing, building muscle memory and practical confidence through repeated hands-on engagement. Students complete exercises that mirror actual workplace tasks, ensuring skills transfer directly to their professional roles.
- Security Engineers building defensive controls
- Security Analysts and Blue Team members
- Systems Administrators with security responsibilities
- GRC and Risk Professionals supporting controls
- Professionals implementing Practical Infrastructure as Code Workshop
- Execute hands-on tasks for practical infrastructure
- Explain Course Overview and Learning Objectives fundamentals
- Execute hands-on tasks for what you will learn — covering Secure CI/CD pipeline architecture, Infrastructure as Code security patterns.
- Design a scalable privilege management architecture with policy and enforcement, including Infrastructure as Code security patterns.
- Execute hands-on tasks for how you will learn — covering Hands-on lab exercises throughout, Real-world production scenarios.
- Execute hands-on tasks for course structure — covering Beginner-friendly, practice-intensive format, Build skills progressively from foundations.
- Execute hands-on tasks for why iac matters — covering infrastructure via code files.
- Execute hands-on tasks for azure bicep
- Execute hands-on tasks for terraform (hashicorp) — covering AWS CloudFormation.
- Execute hands-on tasks for configuration mgmt — covering Ansible (agentless), Chef / Puppet.
- Execute hands-on tasks for container orchestration — covering Kubernetes (K8s), Docker Compose.
- Execute hands-on tasks for declarative (what) — covering Describe desired end state, Engine determines how to get there.
| Module 01 | Practical Infrastructure |
| Module 02 | Course Overview and Learning Objectives |
| Module 03 | What You Will Learn |
| Module 04 | Secure CI/CD pipeline architecture |
| Module 05 | How You Will Learn |
| Module 06 | Course Structure |
| Module 07 | Why IaC Matters |
| Module 08 | Azure Bicep |
| Module 09 | Terraform (HashiCorp) |
| Module 10 | Configuration Mgmt |
| Module 11 | Container Orchestration |
| Module 12 | Declarative (What) |
| Module 13 | Imperative (How) |
| Module 14 | Git-Based Workflows |
All hands-on labs run on Rocheston Rose X OS. Students practice practical infrastructure as code workshop by implementing the controls discussed in class, with a focus on real-world deployment, monitoring, and validation.
- Lab 1: Execute hands-on tasks for practical infrastructure
- Lab 2: Explain Course Overview and Learning Objectives fundamentals
- Lab 3: Execute hands-on tasks for what you will learn
- Lab 4: Design a scalable privilege management architecture with policy and enforcement
- Lab 5: Execute hands-on tasks for how you will learn
Upon successful completion of this course, students will receive an official RCCE Course Completion Certificate for Practical Infrastructure as Code Workshop, verifiable through the Rocheston certification portal.
- Full access to all course materials and slide decks
- Hands-on lab access on Rocheston Rose X OS environment
- Access to Rocheston CyberNotes
- Access to Rocheston Zelfire — EDR/XDR SIEM platform
- Access to Rocheston Raven — online cyber range exercise platform
- Access to Rocheston Vulnerability Vines AI