Practical DevOps Security [Video]

More Information
Learn
  • Integrating security into the DevOps culture and organization
  • Integrating Security into Continuous Delivery workflows for continuous security
  • Leverage Infrastructure as Code techniques for secure configuration management and provisioning
  • Eliminate manual security practices such as risk assessments and audits by automating all the verification
  • Build better defense mechanism by the use of Red and Blue teams
  • Create automatic compliance by using the DevOps Audit Defense Toolkit
  • Build continuous a feedback loop by automating all security checks throughout the Continuous Delivery pipeline
About

DevOps enables rapid application development while security teams follow a traditional way of performing security checks. If security (that is, configuration checks, code analysis, vulnerability scanning, and more) is not adequately automated then it leads to increased security violations and hacking/phishing attacks. Integrating security in the DevOps ethos helps fix flaws earlier in the development process. This course shows you how to apply DevOps security best practices at every stage in your DevOps pipeline. You will learn proven approaches to reducing vulnerability and strengthening your defenses against attack. You will understand using security as code with the intent of making security and compliance consumable as a service. This course explains how DevOps security practices differ from traditional security approaches and provides techniques to embed governance and cybersecurity functions throughout the DevOps workflow. By the end of the course, you will have learned best practices in DevSecOps, the core concepts of secure DevOps, and how security can be integrated into the development pipeline.

Style and Approach

A comprehensive course filled with step-by-step instructions, working examples, and practical insight. We take a web application and use OWASP DevSecOps Studio to show how to embed security verification in various stages of the product development pipeline. The entire course is segmented into small parts, which creates for an immersive learning experience. The different sections focus on one area and help you to decide your pace of learning.

Features
  • A practical course that will teach you to protect your organization with a collaboration of DevOps and security.
  • Integrate security step-by-step at every layer of the DevOps pipeline with practical sessions.
  • Real-life scenarios and case studies of DevOps unicorns such as Etsy, Netflix, Google, etc.
Course Length 1 hour 53 minutes
ISBN 9781788394901
Date Of Publication 31 Jan 2019

Authors

Gurpreet Sachdeva

Gurpreet Sachdeva is a Technology Executive with 21+ years' experience working on some of the most challenging technologies related to Cloud Computing, DevOps, and Security. Gurpreet did his B. Tech (C.S.) from NIT, Kurukshetra and M.S. (Software Systems) from BITS, Pilani. He is currently working as Assistant Vice President—Technology with Aricent, Gurgaon. He is a keen Java enthusiast and co-founder of Delhi – NCR – Java User Group. Gurpreet is an invited speaker in prestigious conferences such as Oracle – Java One, Great India Developer Summit. He blogs at www.thistechnologylife.com and has written a book on Elastic stack: https://amzn.to/2K8hTvD.