What do you think?
Rate this book
DevSecOps for Azure: End-to-end supply chain security for GitHub, Azure DevOps, and the Azure cloud
Acquire a holistic comprehension and practical expertise in embedding security within the DevOps pipeline, specifically tailored for Azure cloud environments
Key FeaturesMaster integrating security into Azure DevOps workflows for cloud infrastructureRefine your skills with cutting-edge tools to build a secure CI/CD pipeline for both app and infrastructureHarden the entire DevOps workflow, from planning and coding to source control, CI, and cloud workload deploymentBook DescriptionThe security of businesses is a top priority, especially in the constantly evolving Azure cloud. However, many organizations struggle to keep up with the security and compliance of their services. Attackers are targeting organizations through their software development processes, making software supply chain security crucial. This includes everything needed to create and deliver software, such as source control systems, build systems, CI/CD platforms, and various artifacts.
This book will provide a comprehensive understanding of the DevOps workflow, its security risks and threats, and how to implement secure development environments, automated threat modeling processes, and continuous secure coding training. It will guide you in integrating security measures into every phase of the workflow, including using Azure-native cloud security services and third-party tools to secure systems and applications. The book will also cover implementing continuous security and compliance into the BUILD and DEPLOY processes.
By the end of this book, you will have the knowledge and skills to implement a secure code-to-cloud process for the Azure cloud.
What you will learnUnderstand the relationship between Agile, DevOps, and CloudSecure the use of containers in a CI/CD workflowImplement a continuous and automated threat modeling processSecure development toolchains like GitHub codespaces, Microsoft Dev Box, and GitHubIntegrate continuous security throughout the code development workflow, pre- and post-source control contributionIntegrate SCA, SAST, and secret scanning into the BUILD process to ensure code safetyImplement security in release and deploy phases for artifact and environment complianceWho this book is forThis book is for security professionals, DevOps engineers, developers, or anyone interested in learning the implementation of DevSecOps in a practical way. It is also beneficial for Security/IT professionals transitioning to a public cloud environment, those moving to a DevOps environment, and individuals seeking to understand where to add security checks, testing, and other controls to Azure cloud continuous delivery pipelines.
Table of ContentsAgile, DevOps and Azure OverviewSecurity Challenges of the DevOps WorkflowImplementing Security in the PLAN Phase of DevOpsImplementing Pre-Commit Security ControlsImplementing Source Control SecurityImplementing security in the BUILD and TEST phases of DevOpsImplementing Security in the RELEASE and DEPLOY Phases of DevOpsImplementing Container Security in DevOpsImplementing Continuous Security Monitoring in Azure
Key FeaturesMaster integrating security into Azure DevOps workflows for cloud infrastructureRefine your skills with cutting-edge tools to build a secure CI/CD pipeline for both app and infrastructureHarden the entire DevOps workflow, from planning and coding to source control, CI, and cloud workload deploymentBook DescriptionThe security of businesses is a top priority, especially in the constantly evolving Azure cloud. However, many organizations struggle to keep up with the security and compliance of their services. Attackers are targeting organizations through their software development processes, making software supply chain security crucial. This includes everything needed to create and deliver software, such as source control systems, build systems, CI/CD platforms, and various artifacts.
This book will provide a comprehensive understanding of the DevOps workflow, its security risks and threats, and how to implement secure development environments, automated threat modeling processes, and continuous secure coding training. It will guide you in integrating security measures into every phase of the workflow, including using Azure-native cloud security services and third-party tools to secure systems and applications. The book will also cover implementing continuous security and compliance into the BUILD and DEPLOY processes.
By the end of this book, you will have the knowledge and skills to implement a secure code-to-cloud process for the Azure cloud.
What you will learnUnderstand the relationship between Agile, DevOps, and CloudSecure the use of containers in a CI/CD workflowImplement a continuous and automated threat modeling processSecure development toolchains like GitHub codespaces, Microsoft Dev Box, and GitHubIntegrate continuous security throughout the code development workflow, pre- and post-source control contributionIntegrate SCA, SAST, and secret scanning into the BUILD process to ensure code safetyImplement security in release and deploy phases for artifact and environment complianceWho this book is forThis book is for security professionals, DevOps engineers, developers, or anyone interested in learning the implementation of DevSecOps in a practical way. It is also beneficial for Security/IT professionals transitioning to a public cloud environment, those moving to a DevOps environment, and individuals seeking to understand where to add security checks, testing, and other controls to Azure cloud continuous delivery pipelines.
Table of ContentsAgile, DevOps and Azure OverviewSecurity Challenges of the DevOps WorkflowImplementing Security in the PLAN Phase of DevOpsImplementing Pre-Commit Security ControlsImplementing Source Control SecurityImplementing security in the BUILD and TEST phases of DevOpsImplementing Security in the RELEASE and DEPLOY Phases of DevOpsImplementing Container Security in DevOpsImplementing Continuous Security Monitoring in Azure
559 pages, Kindle Edition
Published August 28, 2024
2 people are currently reading
Ratings & Reviews
Friends & Following
Create a free account to discover what your friends think of this book!
Community Reviews
No one has reviewed this book yet.