Skip to content
>_
SecOps
Log
_
Home
Courses
Learning path
Resources
Topics
Blog
All courses
Compliance as code
Advanced
5 sections · 15 lessons · ~9h total · 60-question self-test
Start course
01
Frameworks & controls
3 lessons
Test yourself
01
Frameworks demystified
CIS, SOC 2, PCI, NIST, ISO as checkable controls.
30 min
02
Controls & mapping
Preventive/detective/corrective, owned, mapped.
30 min
03
CIS Benchmarks as controls
Automated hardening assessment, continuously.
30 min
02
Policy as code
3 lessons
Test yourself
01
OPA & Rego for compliance
Controls as declarative, tested policy.
35 min
02
Conftest in CI
Gate configs against policy, shift-left.
30 min
03
Policy at admission
Gatekeeper/Kyverno as the runtime backstop.
30 min
03
Evidence & continuous audit
3 lessons
Test yourself
01
Evidence automation
Controls that evidence themselves, mapped.
35 min
02
Continuous compliance
Always-on evaluation vs point-in-time.
30 min
03
Audit trails & attestation
Tamper-evident, attested, reusable evidence.
30 min
04
Drift & IaC gates
3 lessons
Test yourself
01
Drift as a compliance signal
Out-of-band change = potential control failure.
30 min
02
IaC compliance gates
Checkov/tfsec/Terrascan mapped to frameworks.
30 min
03
Remediation & prevention
Auto-fix the safe cases; guardrail the rest.
30 min
05
Compliance at scale
3 lessons
Test yourself
01
Compliance at scale
Inherited guardrails, secure-by-default accounts.
30 min
02
Audit readiness
Audit prep as a query, not a scramble.
25 min
03
Compliance in DevSecOps
Controls built into the pipeline and platform.
30 min
Final exam
Test yourself on everything
60 questions drawn from all 5 sections — every answer explained as you pick.
Start final exam