What do you think?
Rate this book
DevOpsSec
How do you build security and compliance into your DevOps platforms and pipelines? With this O’Reilly report, security analysts, security engineers, and pen testers will learn how to leverage the same processes and tools—such as version control, containers, and Continuous Delivery—that DevOps practitioners use to automate software delivery and infrastructure changes. In other words, you’ll understand how to use DevOps to secure DevOps.
Author Jim Bird uses case studies from Etsy, Netflix, and the London Multi-Asset Exchange (LMAX) to illustrate the steps leading organizations have taken to secure their DevOps processes. If you understand application and infrastructure security, and have some familiarity with DevOps and Agile development practices and tools, this report is the ideal place to start.
This report shows you how to:
- Examine the security and compliance challenges that DevOps poses in your organization
- Leverage key DevOps practices and workflows to design, build, deploy, and run secure systems
- Build security as code by mapping security checks and controls into DevOps workflows
- Take advantage of software component analysis, vulnerability management, and automated software testing tools that dev and ops already use
- Build compliance into DevOps, and wire compliance policies and checks and auditing into Continuous Delivery
Author Jim Bird uses case studies from Etsy, Netflix, and the London Multi-Asset Exchange (LMAX) to illustrate the steps leading organizations have taken to secure their DevOps processes. If you understand application and infrastructure security, and have some familiarity with DevOps and Agile development practices and tools, this report is the ideal place to start.
This report shows you how to:
- Examine the security and compliance challenges that DevOps poses in your organization
- Leverage key DevOps practices and workflows to design, build, deploy, and run secure systems
- Build security as code by mapping security checks and controls into DevOps workflows
- Take advantage of software component analysis, vulnerability management, and automated software testing tools that dev and ops already use
- Build compliance into DevOps, and wire compliance policies and checks and auditing into Continuous Delivery
- GenresTechnologyNonfiction
86 pages, ebook
Published May 24, 2016
7 people are currently reading
56 people want to read
Ratings & Reviews
Friends & Following
Create a free account to discover what your friends think of this book!
Community Reviews
Displaying 1 - 4 of 4 reviews
May 1, 2021
Short, but very insightful. Everything explained clearly, so now i understand better. Some of the mentioned tools might be a bit outdated, but that is nothing, because it is impossible to keep up these days.
August 31, 2017
Short book that highlight the different processes and tools to secure a DevOps pipeline. I found the book useful and knew some tools and technologies didn't know about before reading.
Read
November 9, 2020Great book covering the convergence of DevOps and security best practices.
July 8, 2016
Short, yet informative read for keeping the balance between security and compliance with the pace of the modern software delivery.
Displaying 1 - 4 of 4 reviews