Book Image

Practical DevOps Security [Video]

By : Gurpreet Sachdeva
Book Image

Practical DevOps Security [Video]

By: Gurpreet Sachdeva

Overview of this book

DevOps enables rapid application development while security teams follow a traditional way of performing security checks. If security (that is, configuration checks, code analysis, vulnerability scanning, and more) is not adequately automated then it leads to increased security violations and hacking/phishing attacks. Integrating security in the DevOps ethos helps fix flaws earlier in the development process. This course shows you how to apply DevOps security best practices at every stage in your DevOps pipeline. You will learn proven approaches to reducing vulnerability and strengthening your defenses against attack. You will understand using security as code with the intent of making security and compliance consumable as a service. This course explains how DevOps security practices differ from traditional security approaches and provides techniques to embed governance and cybersecurity functions throughout the DevOps workflow. By the end of the course, you will have learned best practices in DevSecOps, the core concepts of secure DevOps, and how security can be integrated into the development pipeline. The code bundle for this video course is available at - https://github.com/PacktPublishing/Practical-DevOps-Security-Video
Table of Contents (6 chapters)
Chapter 3
Securing Development Practices
Content Locked
Section 1
Security Requirements
In this video you will see how proper planning is quite crucial to address security requirements. - Define proper functional and non-functional requirements. - Take the first step which is to identify all the risks - Explore the security user stories for various stakeholders - User, Admin, Business Owner