Draft:Certified DevSecOps Professional
DevSecOps practitioner certification
From Wikipedia, the free encyclopedia
The Certified DevSecOps Professional (CDP) is a practitioner-level certification in DevSecOps issued by Practical DevSecOps, a subsidiary of HYSN Technologies Inc. The certification evaluates competency in integrating security practices into continuous integration and continuous delivery (CI/CD) pipelines.
 | Review waiting, please be patient.
This may take 2 months or more, since drafts are reviewed in no specific order. There are 4,274 pending submissions waiting for review.
Where to get help
How to improve a draft
You can also browse Wikipedia:Featured articles and Wikipedia:Good articles to find examples of Wikipedia's best writing on topics similar to your proposed article. Improving your odds of a speedy review To improve your odds of a faster review, tag your draft with relevant WikiProject tags using the button below. This will let reviewers know a new draft has been submitted in their area of interest. For instance, if you wrote about a female astronomer, you would want to add the Biography, Astronomy, and Women scientists tags. Editor resources
Reviewer tools
|
Issuing organization
Practical DevSecOps is operated by HYSN Technologies Inc., a company incorporated in Delaware with offices in Newark, New Jersey, and Singapore. The company was founded by Mohammed A. Imran, a security professional who delivered a training course at Black Hat USA 2018 titled "Practical DevSecOps: Continuous Security in the Age of Cloud."[1] Imran has also delivered training at the Hack In The Box (HITB) international security conference.[2]
Certification
The CDP is included in the Cybersecurity and Infrastructure Security Agency (CISA) National Initiative for Cybersecurity Careers and Studies (NICCS) training catalog.[3] TechTarget's SearchSecurity listed the CDP among DevSecOps certifications available to cybersecurity professionals, alongside offerings from DevOps Institute, EXIN, and EC-Council.[4]
Exam format
The CDP exam consists of five scenario-based challenges administered within a 12-hour hands-on window, followed by a 24-hour period for report submission. Candidates must achieve a minimum score of 80% to pass. The examination does not include multiple-choice questions; performance is assessed entirely within a live lab environment.[5]
Course curriculum
The preparatory course covers nine modules including CI/CD pipeline security, static application security testing (SAST), dynamic application security testing (DAST), infrastructure as code (IaC), compliance as code (CaC), software composition analysis (SCA), and vulnerability management.[5] The certification carries no expiration date and does not require periodic recertification.[5]