DevSecOps for Azure
eBook - ePub

DevSecOps for Azure

End-to-end supply chain security for GitHub, Azure DevOps, and the Azure cloud

  1. English
  2. ePUB (mobile friendly)
  3. Available on iOS & Android
eBook - ePub

DevSecOps for Azure

End-to-end supply chain security for GitHub, Azure DevOps, and the Azure cloud

About this book

Gain holistic insights and practical expertise in embedding security within the DevOps pipeline, specifically tailored for Azure cloud environments

Key Features

  • Learn how to integrate security into Azure DevOps workflows for cloud infrastructure
  • Find out how to integrate secure practices across all phases of the Azure DevOps workflow, from planning to monitoring
  • Harden the entire DevOps workflow, from planning and coding to source control, CI, and cloud workload deployment
  • Purchase of the print or Kindle book includes a free PDF eBook

Book Description

Businesses must prioritize security, especially when working in the constantly evolving Azure cloud. However, many organizations struggle to maintain security and compliance. Attackers are increasingly targeting software development processes, making software supply chain security crucial. This includes source control systems, build systems, CI/CD platforms, and various artifacts. With the help of this book, you'll be able to enhance security and compliance in Azure software development processes. Starting with an overview of DevOps and its relationship with Agile methodologies and cloud computing, you'll gain a solid foundation in DevSecOps principles. The book then delves into the security challenges specific to DevOps workflows and how to address them effectively. You'll learn how to implement security measures in the planning phase, including threat modeling and secure coding practices. You'll also explore pre-commit security controls, source control security, and the integration of various security tools in the build and test phases. The book covers crucial aspects of securing the release and deploy phases, focusing on artifact integrity, infrastructure as code security, and runtime protection. By the end of this book, you'll have the knowledge and skills to implement a secure code-to-cloud process for the Azure cloud.

What you will learn

  • Understand the relationship between Agile, DevOps, and the cloud
  • Secure the use of containers in a CI/CD workflow
  • Implement a continuous and automated threat modeling process
  • Secure development toolchains such as GitHub Codespaces, Microsoft Dev Box, and GitHub
  • Integrate continuous security throughout the code development workflow, pre-source and post-source control contribution
  • Integrate SCA, SAST, and secret scanning into the build process to ensure code safety
  • Implement security in release and deploy phases for artifact and environment compliance

Who this book is for

This book is for security professionals and developers transitioning to a public cloud environment or moving towards a DevSecOps paradigm. It's also designed for DevOps engineers, or anyone looking to master the implementation of DevSecOps in a practical manner. Individuals who want to understand how to integrate security checks, testing, and other controls into Azure cloud continuous delivery pipelines will also find this book invaluable. Prior knowledge of DevOps principles and practices, as well as an understanding of security fundamentals will be beneficial.

]]>

Frequently asked questions

Yes, you can cancel anytime from the Subscription tab in your account settings on the Perlego website. Your subscription will stay active until the end of your current billing period. Learn how to cancel your subscription.
At the moment all of our mobile-responsive ePub books are available to download via the app. Most of our PDFs are also available to download and we're working on making the final remaining ones downloadable now. Learn more here.
Perlego offers two plans: Essential and Complete
  • Essential is ideal for learners and professionals who enjoy exploring a wide range of subjects. Access the Essential Library with 800,000+ trusted titles and best-sellers across business, personal growth, and the humanities. Includes unlimited reading time and Standard Read Aloud voice.
  • Complete: Perfect for advanced learners and researchers needing full, unrestricted access. Unlock 1.4M+ books across hundreds of subjects, including academic and specialized titles. The Complete Plan also includes advanced features like Premium Read Aloud and Research Assistant.
Both plans are available with monthly, semester, or annual billing cycles.
We are an online textbook subscription service, where you can get access to an entire online library for less than the price of a single book per month. With over 1 million books across 1000+ topics, we’ve got you covered! Learn more here.
Look out for the read-aloud symbol on your next book to see if you can listen to it. The read-aloud tool reads text aloud for you, highlighting the text as it is being read. You can pause it, speed it up and slow it down. Learn more here.
Yes! You can use the Perlego app on both iOS or Android devices to read anytime, anywhere — even offline. Perfect for commutes or when you’re on the go.
Please note we cannot support devices running on iOS 13 and Android 7 or earlier. Learn more about using the app.
Yes, you can access DevSecOps for Azure by David Okeyode,Joylynn Kirui in PDF and/or ePUB format, as well as other popular books in Computer Science & Cyber Security. We have over one million books available in our catalogue for you to explore.

Table of contents

  1. DevSecOps for Azure
  2. Foreword
  3. Preface
  4. Part 1: Understanding DevOps and DevSecOps
  5. 1
  6. 2
  7. Part 2: Securing the Plan and Code Phases of DevOps
  8. 3
  9. 4
  10. 5
  11. Part 3: Securing the Build, Test, Release, and Operate Phases of DevOps
  12. 6
  13. 7
  14. 8
  15. Index
  16. Other Books You May Enjoy