For cloud security engineers, it’s crucial to look beyond the limited managed services provided by cloud vendors and make use of the wide array of cloud native tools available to developers and security professionals, which enable the implementation of security solutions at scale. This book covers technologies that secure infrastructure, containers, and runtime environments using vendor-agnostic cloud native tools under the Cloud Native Computing Foundation (CNCF).
The book begins with an introduction to the whats and whys of the cloud native environment, providing a primer on the platforms that you’ll explore throughout. You’ll then progress through the book, following the phases of application development. Starting with system design choices, security trade-offs, and secure application coding techniques that every developer should be mindful of, you’ll delve into more advanced topics such as system security architecture and threat modelling practices. The book concludes by explaining the legal and regulatory frameworks governing security practices in the cloud native space and highlights real-world repercussions that companies have faced as a result of immature security practices.
By the end of this book, you'll be better equipped to create secure code and system designs.
publication date
2023-08-25
what you will learn
Understand security concerns and challenges related to cloud-based app development
Explore the different tools for securing configurations, networks, and runtime
Implement threat modeling for risk mitigation strategies
Deploy various security solutions for the CI/CD pipeline
Discover best practices for logging, monitoring, and alerting
Understand regulatory compliance product impact on cloud security
key features
Learn how to select cloud-native platforms and integrate security solutions into the system * Leverage cutting-edge tools and platforms securely on a global scale in production environments * Understand the laws and regulations necessary to prevent federal prosecution
approach
Complete each chapter understanding each stage of secure development practices, complete self-assessment questions, the easy-to-follow tutorials will teach you real world security practices using platforms and tools leveraged by engineers in real world, from concept through to deployment
audience
This book is for developers, security professionals, and DevOps teams involved in designing, developing, and deploying cloud native applications. It benefits those with a technical background seeking a deeper understanding of cloud-native security and the latest tools and technologies for securing cloud native infrastructure and runtime environments. Prior experience with cloud vendors and their managed services is advantageous for leveraging the tools and platforms covered in this book.
short description
Starting with the foundations of software development, this book focuses on security practices and implementing processes and tooling for multiple security solutions such as identity and access management, incident response and threat detection, defence in depth, and many other security principles within the cloud native space.
subtitle
Unleash the power of cloud native tools for robust security in modern applications
keywords
Web application development; app development; security software; secure software; CI CD; continuous delivery
Product ISBN
9781837636983
