Description
Fifteen years after our first class, we still have the same passion: to train exceptional IT professionals. At SIXE, we believe that behind every technology there are people who need to master it, which is why our approach goes beyond theory to create learning experiences that truly transform careers.
Terraform Cloud/Enterprise and Sentinel Policy-as-Code Course Information
Who is it aimed at?
This course for experts is specially designed for:
- Platform managers implementing IaC governance on an enterprise scale.
- DevOps leaders who manage teams and need cost control and compliance.
- Senior cloud architects who design solutions for regulated environments.
- Platform Engineers who establish organizational policies and controls.
- Security Engineers specialized in Infrastructure as Code compliance.
- Enterprise Architects responsible for cloud governance and multi-tenancy.
Prerequisites
To get the most out of this expert training, participants should have:
- Module SXTF02 completed or solid experience with modules and GitOps
- Hands-on experience managing Terraform infrastructure in production
- Solid knowledge of governance and cloud compliance concepts.
- Familiarity with multi-tenant architectures and cost control
- Basic experience with security policies and RBAC enterprise
Course objectives
At the end of this intensive course, participants will have mastered:
- Terraform Cloud/Enterprise: full state migration and collaborative configuration
- Advanced FinOps: cost dashboards, estimates and budget control
- RBAC enterprise: SSO, teams, granular permissions and access control
- Policy-as-Code: Sentinel policy development, testing and deployment
- Governance workflows: advisory vs. enforced policies and full life cycle
- Multi-tenancy: workspace architectures for complex organizations
- Compliance automation: mandatory labeling, spending limits and restrictions
- Landing zones enterprise: architecture patterns for regulated organizations
- SOC integration: automatic alerts and compliance reporting
- Disaster recovery: backup and recovery of enterprise configurations
Training program
Module 1: Terraform Cloud/Enterprise Architecture
- Differences between Terraform Cloud, Enterprise and OpenTofu alternatives
- Pricing models and features per tier (Team, Governance & Policy)
- Workspace architecture and organizational strategies
- Migration planning from self-hosted to managed services
Module 2: State migration and workspaces
- Local/remote state migration strategies to Terraform Cloud
- Configuration of workspaces: VCS-driven vs. API-driven vs. CLI-driven
- Global variable sets and workspace-specific management
- State locking and conflict resolution in collaborative environments
Module 3: FinOps and cost control
- Activation and configuration of cost estimation features
- FinOps Dashboards: trend analysis and forecasting
- Budget alerts and automatic cost controls
- Resource tagging for cost allocation and chargeback
Module 4: RBAC and Single Sign-On enterprise
- SSO configuration with SAML/OIDC (Active Directory, Okta, Auth0)
- Team design and organizational roles
- Granular permissions: workspace, organization and team permissions
- API tokens and service accounts for automation
Module 5: Introduction to Sentinel Policy-as-Code
- Sentinel language architecture and philosophy
- Main imports: tfplan, tfconfig, tfstate, tfrun
- Basic syntax: rules, main, functions and testing framework
- Local development with Sentinel CLI and debugging techniques
Module 6: Advanced Policy Development
- Mandatory labeling policies and resource naming conventions
- Cost controls: workspace, resource-type and time-based limits
- Security policies: region restrictions, instance types allowed
- Compliance rules: encryption requirements, network policies
Module 7: Testing and Policy Life Cycle
- Unit testing of Sentinel policies with mock data
- Integration testing in staging workspaces
- Policy sets: organization and deployment strategies
- Advisory vs soft-mandatory vs hard-mandatory enforcement modes
Module 8: Enterprise Lab: Complete Landing Zone
- Multi-workspace architecture design for fictitious organization
- Implementation of budget cap policy with automated enforcement
- Configuration of mandatory tagging and compliance reporting
- Testing of policy enforcement and override procedures
Module 9: Enterprise integrations and alerts
- Webhooks and notifications: Slack, Microsoft Teams integration
- ITSM integration: ServiceNow ticket creation for policy violations
- SIEM integration: Splunk, Azure Sentinel for audit logging
- Custom integrations via API for enterprise workflows
Module 10: Operations and governance at scale
- Backup and disaster recovery of Terraform Cloud configurations
- Monitoring and observability: metrics, alerts and dashboards
- Upgrade strategies and change management procedures
- Continuous improvement: policy analytics and optimization
Hands-on methodology with enterprise cases
Our hands-on approach ensures complete mastery of governance IaC through laboratories that replicate regulated environments:
- Policy repository complete with production-ready Sentinel policies
- Cost monitoring dashboards with alerts and automated enforcement
- Full SOC/SIEM integration with incident response workflows
The SIXE difference: from technician to leader in governance IaC
At SIXE we train leaders in Infrastructure as Code governance capable of transforming enterprise organizations:
- Enterprise-grade instructors with Fortune 500 and regulated environment experience
- 24/7 compliance labs with real policies in place
- Policy templates enterprise validated in multinational organizations
- 60-day strategic mentoring for organizational implementation
- Exclusive governance leaders network and access to CxO community
- Verifiable executive certification recognized by top-tier consulting firms
Flexible training modalities
Live online training
Interactive sessions with full access to Terraform Cloud Enterprise and governance labs. Immersive experience with real Sentinel policies and functional enterprise integrations. Includes recordings and extended access to compliance environments.
Intensive classroom training
Full immersive experience in our centers with dedicated enterprise infrastructure. Direct networking with governance leaders and immediate access to specialized IaC compliance mentors.
Latin America: Mexico DF, Buenos Aires, Bogota, Santiago, Lima, Quito
Customized in-company training
We fully adapt the content to your specific organizational policies, including your compliance requirements, particular regulatory frameworks and existing enterprise architectures in your organization.
Certification and path of specialization
The SXTF03 course culminates the complete Terraform Enterprise specialization path:
