Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Free Learning

You're reading from Hands-On Security in DevOps Ensure continuous security, deployment, and delivery with DevSecOps

Product type Paperback

Published in Jul 2018

Publisher

ISBN-13 9781788995504

Length 356 pages

Edition 1st Edition

Concepts

DevOps

Author (1):

Tony Hsiang-Chih Hsu

View More author details

Table of Contents (23) Chapters

Preface

1. DevSecOps Drivers and Challenges FREE CHAPTER

2. Security Goals and Metrics

3. Security Assurance Program and Organization

4. Security Requirements and Compliance

5. Case Study - Security Assurance Program

6. Security Architecture and Design Principles

7. Threat Modeling Practices and Secure Design

8. Secure Coding Best Practices

9. Case Study - Security and Privacy by Design

10. Security-Testing Plan and Practices

11. Whitebox Testing Tips

12. Security Testing Toolkits

13. Security Automation with the CI Pipeline

14. Incident Response

15. Security Monitoring

16. Security Assessment for New Releases

17. Threat Inspection and Intelligence

18. Business Fraud and Service Abuses

19. GDPR Compliance Case Study

20. DevSecOps - Challenges, Tips, and FAQs

21. Assessments

22. Other Books You May Enjoy

Leave a review - let other readers know what you think

GDPR Privacy Impact Assessment: https://gdpr-info.eu/issues/privacy-impact-assessment/
Adversarial Tactics, Techniques & Common Knowledge: https://attack.mitre.org/wiki/Main_Page
SDL Threat Modeling Tool: https://www.microsoft.com/en-us/sdl/adopt/threatmodeling.aspx
Elevation of Privilege (EoP) Card Game: https://www.microsoft.com/en-us/sdl/adopt/eop.aspx
SP 800-100 Information Security Handbook: A Guide for Managers https://csrc.nist.gov/publications/detail/sp/800-100/final
Software assurance marketplace: https://www.mir-swamp.org/
NIST Resources from the Software Assurance Reference Dataset: https://samate.nist.gov/SARD/around.php
NIST Test Suites: https://samate.nist.gov/SARD/testsuite.php
NIST Security Recommendations for Hypervisor Deployment on Servers: https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-125A.pdf
NIST Protecting Controlled...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (1)

Hsu

Tony Hsiang-Chih Hsu is a senior security architect, software development manager, and project manager with more than 20 years' experience in security services technology. He has extensive experience of the Secure Software Development Lifecycle (SSDLC) in relation to activities including secure architecture/design review, secure code review, threat modeling, automated security testing, and cloud service inspection. He is also an in-house SDL trainer, having offered hands-on courses totaling in more than 300 hours. He is also the author of Hands-on Security in DevOps, and a co-author of several Open Web Application Security Project (OWASP) projects, including the OWASP testing guide, a proactive control guide, deserialization, cryptographic, and the XXE prevention cheatsheet.

See other products by Hsu