Includes index

Securing DevOps -- Part 1. Case study: Applying layers of security to a simple DevOps pipeline. Building a barebones DevOps pipeline -- Security layer 1: protecting web applications -- Security layer 2: protecting cloud infrastructures -- Security layer 3: securing communications -- Security layer 4: securing the delivery pipeline -- Part 2. Watching for anomalies and protecting services against attacks. Collecting and storing logs -- Analyzing logs for fraud and attacks -- Detecting intrusions -- The Caribbean breach : a case study in incident response -- Part 3. Maturing DevOps security. Assessing risks -- Testing security -- Continuous security

Security teams need to adopt the techniques of DevOps and switch their focus from defending only the infrastructure to protecting the entire organization by improving it continuously. Securing DevOps explores how the techniques of DevOps and Security should be applied together to make cloud services safer. By the end of this book, readers will be ready to build security controls at all layers, monitor and respond to attacks on cloud services, and add security organization-wide through risk management and training