You're reading from Implementing DevSecOps Practices Understand application security testing and secure coding by integrating SAST and DAST

Product type Paperback

Published in Dec 2023

Publisher Packt

ISBN-13 9781803231495

Length 258 pages

Edition 1st Edition

Tools

Chaos Engineering

Concepts

Cybersecurity

Author (1):

Vandana Verma Sehgal

View More author details

Table of Contents (25) Chapters

Preface

1. Part 1:DevSecOps – What and How?

2. Chapter 1: Introducing DevSecOps FREE CHAPTER

3. Part 2: DevSecOps Principles and Processes

4. Chapter 2: DevSecOps Principles

5. Chapter 3: Understanding the Security Posture

6. Chapter 4: Understanding Observability

7. Chapter 5: Understanding Chaos Engineering

8. Part 3:Technology

9. Chapter 6: Continuous Integration and Continuous Deployment

10. Chapter 7: Threat Modeling

11. Chapter 8: Software Composition Analysis (SCA)

12. Chapter 9: Static Application Security Testing (SAST)

13. Chapter 10: Infrastructure-as-Code (IaC) Scanning

14. Chapter 11: Dynamic Application Security Testing (DAST)

15. Part 4: Tools

16. Chapter 12: Setting Up a DevSecOps Program with Open Source Tools

17. Part 5: Governance and an Effective Security Champions Program

18. Chapter 13: License Compliance, Code Coverage, and Baseline Policies

19. Chapter 14: Setting Up a Security Champions Program

20. Part 6: Case Studies and Conclusion

21. Chapter 15: Case Studies

22. Chapter 16: Conclusion

23. Index

Why subscribe?

24. Other Books You May Enjoy

Preface

The integration of Development, Security, and Operations – commonly known as DevSecOps – has emerged as a pivotal approach to software delivery. This methodology not only emphasizes the importance of automating software delivery processes but also places paramount importance on integrating security practices, right from the initial stages of development.

The essence of DevSecOps lies in its ability to break down traditional silos, fostering a culture of shared responsibility for both software quality and security. It recognizes that in the age of cyber threats and frequent software releases, security cannot be an afterthought; it must be ingrained at every stage of the software life cycle.

This book is a culmination of insights, best practices, and hands-on techniques to implement DevSecOps in real-world environments. It delves deep into the practical aspects, guiding readers through the nuances of setting up robust CI/CD pipelines, integrating security tools, automating security checks, and fostering a culture that values security as much as speed.

Whether you are an IT professional aiming to understand the intricacies of DevSecOps, a security enthusiast keen on integrating security into DevOps practices, or a seasoned practitioner looking for hands-on guidance, this book promises to be a comprehensive resource. Through its pages, we’ll demystify the challenges, celebrate the successes, and, above all, pave the way for a future where software is developed swiftly, securely, and efficiently.

Join me on this enlightening journey as we delve into the world of DevSecOps, exploring its principles, practices, and profound impact on the realm of software delivery.

The rest of the chapter is locked

You're reading from Implementing DevSecOps Practices Understand application security testing and secure coding by integrating SAST and DAST

Table of Contents (25) Chapters

Preface

Authors (1)

Personalised recommendations for you

You're reading from Implementing DevSecOps Practices Understand application security testing and secure coding by integrating SAST and DAST

Table of Contents (25) Chapters

Preface

Unlock this book and the full library FREE for 7 days

Authors (1)

Personalised recommendations for you