DevSecOps Practices for Cloud Native

As organizations shift toward cloud native applications, the need for robust security practices is more important than ever. This is where DevSecOps, a philosophy that integrates security practices within the DevOps process, plays a crucial role. In this chapter, we will delve into the various aspects of DevSecOps, focusing on Infrastructure as Code (IaC), Policy as Code (PaC), and continuous integration/continuous deployment (CI/CD) platforms. This chapter will teach you how to automate most of the processes you learned in the previous chapters.

By the end of this chapter, you will have a comprehensive understanding of these concepts and the open source tools that aid in implementing DevSecOps practices. ...

Get Cloud Native Software Security Handbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.