Learn how to implement continuous security throughout your entire software development and delivery pipeline. With this hands-on book, developers, SREs, tech leads, and security engineers will learn how to combine their security process with their DevOps culture. You'll gain a thorough understanding of the best DevSecOps practices, from the construction of safer container images to the hardening of orchestrators to methods for securing your cloud environment.
Michelle Ribeiro, CEO of SPIRITSEC, shows you how to introduce security into DevOps culture, methodologies and tools. You'll learn how to take advantage of contrasting security and DevOps cultures to build an effective DevSecOps program. You'll also explore the four Cs of the cloud-native security model: code, container, cloud, and cluster security by following coded examples.
Table of contents
- 1. Introducing DevSecOps
- 2. Bridging the InfoSec and DevOps Cultures
- 3. Methodologies for Continuous Security
- 4. Code Security
5. Container Security
- 5.1 Container Image
- 5.2 Container Registry
- 5.3 Container Network Security
- Title: Learning DevSecOps
- Release date: May 2022
- Publisher(s): O'Reilly Media, Inc.
- ISBN: 9781098106928
You might also like
Go is rapidly becoming the preferred language for building web services. There are plenty of tutorials …
Python for Data Analysis, 2nd Edition
Get complete instructions for manipulating, processing, cleaning, and crunching datasets in Python. Updated for Python 3.6, …
Zero Trust Networks
The perimeter defenses guarding your network perhaps are not as secure as you think. Hosts behind …
Cloud Native DevOps with Kubernetes
Kubernetes is the operating system of the cloud native world, providing a reliable and scalable platform …