Szczegóły ebooka

DevSecOps for Azure. End-to-end supply chain security for GitHub, Azure DevOps, and the Azure cloud

DevSecOps for Azure. End-to-end supply chain security for GitHub, Azure DevOps, and the Azure cloud

David Okeyode, Joylynn Kirui, Scott Hanselman

Ebook
Businesses must prioritize security, especially when working in the constantly evolving Azure cloud. However, many organizations struggle to maintain security and compliance. Attackers are increasingly targeting software development processes, making software supply chain security crucial. This includes source control systems, build systems, CI/CD platforms, and various artifacts. With the help of this book, you’ll be able to enhance security and compliance in Azure software development processes.
Starting with an overview of DevOps and its relationship with Agile methodologies and cloud computing, you'll gain a solid foundation in DevSecOps principles. The book then delves into the security challenges specific to DevOps workflows and how to address them effectively. You'll learn how to implement security measures in the planning phase, including threat modeling and secure coding practices. You'll also explore pre-commit security controls, source control security, and the integration of various security tools in the build and test phases. The book covers crucial aspects of securing the release and deploy phases, focusing on artifact integrity, infrastructure as code security, and runtime protection.
By the end of this book, you’ll have the knowledge and skills to implement a secure code-to-cloud process for the Azure cloud.
  • 1. Agile, DevOps, and Azure Overview
  • 2. Security Challenges of the DevOps Workflow
  • 3. Implementing Security in the Plan Phase of DevOps
  • 4. Implementing Pre-commit Security Controls
  • 5. Implementing Source Control Security
  • 6. Implementing Security in the Build Phase of DevOps
  • 7. Implementing Security in the Test and Release Phases of DevOps
  • 8. Continuous Security Monitoring on Azure
  • Tytuł: DevSecOps for Azure. End-to-end supply chain security for GitHub, Azure DevOps, and the Azure cloud
  • Autor: David Okeyode, Joylynn Kirui, Scott Hanselman
  • Tytuł oryginału: DevSecOps for Azure. End-to-end supply chain security for GitHub, Azure DevOps, and the Azure cloud
  • ISBN: 9781837633333, 9781837633333
  • Data wydania: 2024-08-28
  • Format: Ebook
  • Identyfikator pozycji: e_3xc6
  • Wydawca: Packt Publishing