Securing Devops: Security in the Cloud

Huge savings for students

Each student receives a 50% discount off of most books in the HSG Book Store. During class, please ask the instructor about purchase details.
List Price: $49.99
Price: $25.00
You Save: $25.00
0Summary

Securing DevOps explores how the techniques of DevOps and security should be applied together to make cloud services safer. This introductory book reviews the latest practices used in securing web applications and their infrastructure and teaches you techniques to integrate security directly into your product. You'll also learn the core concepts of DevOps, such as continuous integration, continuous delivery, and infrastructure as a service.

Purchase of the print book includes a free eBook in PDF, Kindle, and ePub formats from Manning Publications.

About the Technology

An application running in the cloud can benefit from incredible efficiencies, but they come with unique security threats too. A DevOps team's highest priority is understanding those risks and hardening the system against them.

About the Book

Securing DevOps teaches you the essential techniques to secure your cloud services. Using compelling case studies, it shows you how to build security into automated testing, continuous delivery, and other core DevOps processes. This experience-rich book is filled with mission-critical strategies to protect web applications against attacks, deter fraud attempts, and make your services safer when operating at scale. You'll also learn to identify, assess, and secure the unique vulnerabilities posed by cloud deployments and automation tools commonly used in modern infrastructures.

What's inside

  • An approach to continuous security
  • Implementing test-driven security in DevOps
  • Security techniques for cloud services
  • Watching for fraud and responding to incidents
  • Security testing and risk assessment

About the Reader

Readers should be comfortable with Linux and standard DevOps practices like CI, CD, and unit testing.

About the Author

Julien Vehent is a security architect and DevOps advocate. He leads the Firefox Operations Security team at Mozilla, and is responsible for the security of Firefox's high-traffic cloud services and public websites.

Table of Contents

  1. Securing DevOps
  2. PART 1 - Case study: applying layers of security to a simple DevOps pipeline
  3. Building a barebones DevOps pipeline
  4. Security layer 1: protecting web applications
  5. Security layer 2: protecting cloud infrastructures
  6. Security layer 3: securing communications
  7. Security layer 4: securing the delivery pipeline
  8. PART 2 - Watching for anomalies and protecting services against attacks
  9. Collecting and storing logs
  10. Analyzing logs for fraud and attacks
  11. Detecting intrusions
  12. The Caribbean breach: a case study in incident response
  13. PART 3 - Maturing DevOps security
  14. Assessing risks
  15. Testing security
  16. Continuous security
Manning Publications