Welcome to the Secure Development Lifecycle (SDL) Training
This training strengthens our commitment to secure-by-design engineering and compliance. You will learn how to apply SDL practices across Azion’s globally distributed Edge platform to reduce risk, prevent vulnerabilities, and protect our data and services.
What you will learn
- SDL end-to-end: requirements, secure design, implementation, verification, release, and operations
- Edge security fundamentals: protecting data in transit and at rest; continuous threat monitoring
- Secure coding:
- Python: dependency pinning, parameterized queries, secrets via environment/secret managers
- Go: safe concurrency (mutexes/channels), secret handling, configuration hardening
- C/C++: memory safety, safe APIs (e.g., strncpy), smart pointers, const-correctness
- Rust: ownership and the borrow checker to prevent memory errors
- Identity and access:
- Zero Trust principles and robust IAM for globally distributed nodes
- Puppet security: RBAC, config audits, least privilege
- Verification and assurance:
- Automated security testing in the pipeline
- Unit testing to reduce functional and security regressions
- Patch and vulnerability management across Edge devices
- Teacher: Uriel Coelho