Secure Git Monitoring and Detection
RCCE students will learn secure CI/CD pipelines, infrastructure as code security, container hardening, supply chain risk management, and automated security testing. RCCE students will learn to integrate security into every phase of the software development lifecycle, shift security left with automated tooling, protect build and deployment pipelines from supply chain attacks, and build security automation that scales with development velocity. This monitoring course teaches comprehensive detection and observability strategies for proactive security operations. Building on core knowledge, RCCE students will learn to instrument systems for security telemetry, build detection pipelines, configure alerting, and maintain monitoring coverage as environments evolve. Students gain the visibility and detection capabilities needed to catch threats early.
- Security Engineers building defensive controls
- Security Analysts and Blue Team members
- Systems Administrators with security responsibilities
- GRC and Risk Professionals supporting controls
- Professionals implementing Secure Git Monitoring and Detection
- Monitor and audit privilege usage; detect escalation attempts
- Execute hands-on tasks for pipeline security — covering Secure CI/CD pipeline architecture.
- Build detections and response workflows for privilege escalation, including Instrument Git for telemetry.
- Execute hands-on tasks for supply chain defense — covering dependency risks.
- Monitor and audit privilege usage; detect escalation attempts, including Maintain visibility at scale.
- Execute hands-on tasks for why git security matters
- Execute hands-on tasks for the source code is the target — covering Git repos hold IP, secrets, and infra.
- Execute hands-on tasks for shift-left security imperative — covering issues at commit time, not deploy.
- Design a scalable privilege management architecture with policy and enforcement
- Execute hands-on tasks for git server
- Execute hands-on tasks for artifact store
- Execute hands-on tasks for key attack surfaces — covering Credential theft from .git dirs.
| Module 01 | Secure Git Monitoring |
| Module 02 | Pipeline Security |
| Module 03 | Threat Detection |
| Module 04 | Supply Chain Defense |
| Module 05 | Monitoring Coverage |
| Module 06 | Why Git Security Matters |
| Module 07 | The Source Code is the Target |
| Module 08 | Shift-Left Security Imperative |
| Module 09 | Git Architecture and Attack Surface |
| Module 10 | Git Server |
| Module 11 | Artifact Store |
| Module 12 | Key Attack Surfaces |
| Module 13 | Git Hook Security Framework |
| Module 14 | Pre-commit Hooks |
All hands-on labs run on Rocheston Rose X OS. Students practice secure git monitoring and detection by implementing the controls discussed in class, with a focus on real-world deployment, monitoring, and validation.
- Lab 1: Monitor and audit privilege usage; detect escalation attempts
- Lab 2: Execute hands-on tasks for pipeline security
- Lab 3: Build detections and response workflows for privilege escalation
- Lab 4: Execute hands-on tasks for supply chain defense
- Lab 5: Monitor and audit privilege usage; detect escalation attempts
Upon successful completion of this course, students will receive an official RCCE Course Completion Certificate for Secure Git Monitoring and Detection, verifiable through the Rocheston certification portal.
- Full access to all course materials and slide decks
- Hands-on lab access on Rocheston Rose X OS environment
- Access to Rocheston CyberNotes
- Access to Rocheston Zelfire — EDR/XDR SIEM platform
- Access to Rocheston Raven — online cyber range exercise platform
- Access to Rocheston Vulnerability Vines AI