Securing DevOps: Security in the Cloud

This book covers securing a CICD pipeline, securing the infrastructure behind it and the security of the web application itself. It is written in a very clear and linear fashion which makes it an interesting read. It uses many examples and has a side project that the reader can choose to follow in order to solidify what they learned. In addition, it gives a modern perspective into info-sec which is more cloud oriented.The downsides: the side project is a little messy and seems like it was written in a hurry. Still, I think that this doesn't take away from how awesome this book is. Overall, I highly recommend it to anyone who works with cloud services, web applications, CICD pipelines and info-sec in general.

This is an excellent book that covers all the essential topics in DevSecOps. A must read for anyone invloved a a DevOps project. It is very detailed yet clearly written.

While the subject is relevant, the book was published 5 years ago in 2018 and is beginning to show it's age. The code and deployment scripts associated with the lab exercise described in chapter 2 where the author takes you through the process of configuring a potentially representative CI/CD pipeline using GitHub, CircleCI, and DockerHub to deploy an API based services in AWS leveraging Elastic Beanstalk no longer works. As a result, I stepped through the process manually as the author described in the chapter using the AWS CLI. It was a painstaking process because important details are abstracted from the reader or the platforms themselves evolved. I finally got the CI/CD pipeline configured and working only to experience issues with the infrastructure and services the pipeline deployed to my AWS account. Nevertheless, the book gets 4 stars from me because the concepts it covers are still relevant and provide the reader with a glimpse into "what right looks like" and because I learned quite a bit about the AWS CLI and AWS Elastic Beanstalk over the 15 hours or so it took me to get through chapter 2 completely demystified how a pipeline works.

My headline is almost a click bait but it is not! There is a silent revolution going on in Information Technology and I am very concerned that many of my brothers and sisters are missing the boat on this one.Yes, DevOps implementations in Enterprises have not provided lots of benefits because they were retrofitted into the bureaucratic IT these corporations have gotten used to. So many gates where guard rails should be.However, social economic pressure has been pushing these slow big enterprises to the cloud as their smaller competitors have cracked the code and turned off their on-premise data centers giving them a tremendous cost and business agility advantage.So what changes for cyber security. Well, the basics are absolutely the same but the pace is quite different. Self-service and elasticity can only be unleashed with automation, now machines will check security posture of machines.DevSecOps is here and this book is a must read for any cyber security engineer/architect that is willing to embrace this new tech world order.The author explains the concepts and provided on point examples based on his extensive experience. What stroke me the most was the fact that everything is actually so obvious and much better than the way we have been doing security this past decade that sometimes I felt obsolete. And we actually are.I am awake and already moving into that direction. Are you?

What a book! It runs the gamut from development security to deployment and all the way to administration and communication. It takes the secure devops process from the developer machine all the way to the production end product, using a sample environment of AWS, CircleCI, DockerHub and the Go language.The author is very knowledgeable and this is can be easily observed. There are example codes and open source tools for every problem presented, the reader is left with instantly actionable information.

The book goes through a very wellIllustrated list of examples on the setting up a secure DevOps CI/CD pipeline on AWS infrastructure. The book lists good tools and examples to show how to architect an AWS cloud for security. If I had to criticize one aspect I would say the book is too AWS focused and t could use some parallels to list examples with other cloud vendors (Azure, Google cloud, etc) but that’s not a big deal - the examples are quite realistic and show the author’s practical knowledge of the topic.

This book is up to date and very practical, it gives us relevant references on how to implement a system. We are referring to it to implement our centralized logging system.

I think this work is extremely valuable and the writing style is seemingly easy to follow. The hardcopy is probably a joy and I may buy a copy. The reason for only 2 stars is that the online version badly formats or completely omits images and tables that are referenced frequently in the text. Please fix the online versions, this book was very expensive to have such a poor experience.

Very happy

I really like the book. The author explains very well a topic that is not easy to cover.Good examples, nice flow of content, all in all a very good book.

Fantastic approach to SecDevOps with practical samples.