Platform security basics
Rails guardrails for platform engineers
Baseline controls for teams that touch transaction rails daily but need crisp language around responsibilities.
Duration: 4 weeks
Format: Blended async + live clinics
Price: 450,000 KRW
This program anchors your engineers in secure defaults, logging expectations, and how to escalate ambiguous changes without freezing releases. Each module ends with a short checklist your leads can paste into merge templates.
Included focus
- Role-based scenarios drawn from real delivery workflows
- Peer review prompts aligned to quality standards language
- Hands-on diff reviews with annotated expectations
- Short videos plus printable one-pagers per lesson
- Office hours with a PatchHarbor instructor
- Optional LMS export for internal hosting
Outcomes
- Engineers can name three non-negotiable controls before merge
- Leaders get a shared vocabulary for pre-release conversations
- Teams adopt a lightweight escalation path for gray-area changes
Min-jun Park teaches transaction rail patterns with an emphasis on calm, repeatable reviews.
FAQ
Does this replace our internal security review?
No. It aligns engineers with your existing review gates so conversations move faster. Your security org keeps final sign-off.
Can we run it entirely offline?
Async materials can be downloaded during the cohort window, but live clinics require a stable video link for the scheduled blocks.
What is not included?
We do not provide legal advice, vendor procurement, or custom tool integrations beyond the documented LMS export.
Participant notes
The rails guardrails module gave our on-call a shared script for triage notes. We still reuse the week two checklist when onboarding contractors.
Clear pacing, though the third week exercise assumed GitHub Actions—we adapted it to GitLab without much friction.