You're reading from Modern DevOps Practices Implement and secure DevOps in the public cloud with cutting-edge tools, tips, tricks, and techniques

Product type Paperback

Published in Sep 2021

Publisher Packt

ISBN-13 9781800562387

Length 530 pages

Edition 1st Edition

Tools

Docker

Concepts

Continuous Delivery

Author (1):

Gaurav Agarwal

View More author details

Table of Contents (19) Chapters

Preface

1. Section 1: Container Fundamentals and Best Practices

2. Chapter 1: The Move to Containers FREE CHAPTER

3. Chapter 2: Containerization with Docker

4. Chapter 3: Creating and Managing Container Images

5. Chapter 4: Container Orchestration with Kubernetes – Part I

6. Chapter 5: Container Orchestration with Kubernetes – Part II

7. Section 2: Delivering Containers

8. Chapter 6: Infrastructure as Code (IaC) with Terraform

9. Chapter 7: Configuration Management with Ansible

10. Chapter 8: IaC and Config Management in Action

11. Chapter 9: Containers as a Service (CaaS) and Serverless Computing for Containers

12. Chapter 10: Continuous Integration

13. Chapter 11: Continuous Deployment/Delivery with Spinnaker

14. Chapter 12: Securing the Deployment Pipeline

15. Section 3: Modern DevOps with GitOps

16. Chapter 13: Understanding DevOps with GitOps

17. Chapter 14: CI/CD Pipelines with GitOps

18. Other Books You May Enjoy

Security of modern DevOps pipelines

Tooling is not the only thing that will help you in your DevSecOps journey. Here are some helpful tips that can help you address security risks and have a more secure culture within your organization.

Adopt a DevSecOps culture

Adopting a DevSecOps approach is critical in implementing modern DevOps. Therefore, it is vital to embed security within an organization's culture. You can achieve that by implementing effective communication and collaboration between the development, operations, and security teams. While most organizations have a security policy, it mustn't be followed just to comply with rules and regulations. Instead, employees should cross-skill and upskill themselves to adopt a DevSecOps approach and embed security early on during development. Security teams need to learn to write code and work with APIs, while developers need to understand security and use automation to achieve this.