You're reading from Mastering Cloud Security Posture Management (CSPM) Secure multi-cloud infrastructure across AWS, Azure, and Google Cloud using proven techniques

Product type Paperback

Published in Jan 2024

Publisher Packt

ISBN-13 9781837638406

Length 472 pages

Edition 1st Edition

Tools

AWS

Concepts

Cloud Security

Author (1):

Qamar Nomani

View More author details

Table of Contents (26) Chapters

Preface

1. Part 1:CSPM Fundamentals

2. Chapter 1: Cloud Security Fundamentals FREE CHAPTER

3. Chapter 2: Understanding CSPM and the Threat Landscape

4. Chapter 3: CSPM Tools and Features

5. Chapter 4: CSPM Tool Selection

6. Part 2: CSPM Deployment Aspects

7. Chapter 5: Deploying the CSPM Tool

8. Chapter 6: Onboarding Cloud Accounts

9. Chapter 7: Onboarding Containers

10. Chapter 8: Exploring Environment Settings

11. Part 3: Security Posture Enhancement

12. Chapter 9: Exploring Cloud Asset Inventory

13. Chapter 10: Reviewing CSPM Dashboards

14. Chapter 11: Major Configuration Risks

15. Chapter 12: Investigating Threats with Query Explorers and KQL

16. Chapter 13: Vulnerability and Patch Management

17. Chapter 14: Compliance Management and Governance

18. Chapter 15: Security Alerts and Monitoring

19. Part 4: Advanced Topics and Future Trends

20. Chapter 16: Integrating CSPM with IaC

21. Chapter 17: DevSecOps – Workflow Automation

22. Chapter 18: CSPM-Related Technologies

23. Chapter 19: Future Trends and Challenges

24. Index

Why subscribe?

25. Other Books You May Enjoy

Key automation concepts

In the world of DevSecOps and CSPM, automation tools and frameworks are the backbone of efficiency and security. These tools are designed to streamline and simplify repetitive, time-consuming tasks while ensuring that security and compliance standards are consistently met. They cover a wide range of functions, including configuration management, testing, monitoring, and incident response.

Some of the popular automation tools and frameworks in the DevSecOps and CSPM domain include Ansible, Terraform, Kubernetes, Jenkins, and security-specific tools such as Nessus, Qualys, and OpenSCAP. These tools allow organizations to automate various aspects of security and compliance management, making it easier to maintain a strong security posture in dynamic cloud environments.