Security for Cloud Native Applications: The Practical Guide for Securing Modern Applications Using AWS, Azure, and GCP

  • 2h 50m
  • Eyal Estrin
  • BPB Publications
  • 2024

Security for cloud-native applications is an overview of cloud-native application’s characteristics from a security point of view, filled with best practices for securing services based on AWS, Azure, and GCP infrastructure.

This book is a practical guide for securing cloud-native applications throughout their lifecycle. It establishes foundational knowledge of cloud services and cloud-native characteristics. It focuses on securing design approaches like APIs, microservices, and event-driven architectures. Specific technologies like containers, Kubernetes, and serverless functions are covered with security best practices. The book emphasizes integrating security throughout development using CI/CD pipelines and IaC tools. It explores policy as code for enforcing security policies and immutable infrastructure for enhanced security posture. Key management and threat detection strategies are also covered. Finally, the book offers a practical example and resources for further learning.

By the end of the book, the reader will be able to design and secure modern applications using the public cloud scale, managed services, automation, and built-in security controls.

KEY FEATURES

  • An overview of security in cloud-native applications, such as modern architectures, containers, CI/CD pipeline, and so on.
  • Using automation, such as infrastructure as code and policy as code, to achieve security at scale.
  • Implementing security, from encryption and secrets management to threat management.

WHAT YOU WILL LEARN

  • How to secure modern design architectures from APIs, event-driven architectures, and microservices.
  • How to secure applications using containers and the Kubernetes platform.
  • How to secure applications using serverless/function-as-a-service.
  • How to implement key and secrets management as part of cloud-native applications.
  • How to implement the 12-factor application methodology and immutable infrastructure in cloud-native applications.

WHO THIS BOOK IS FOR

This book is for security professionals, software development teams, DevOps and cloud architects, and all those who are designing, maintaining, and securing cloud-native applications.

About the Author

Eyal Estrin is a cloud security architect working with cloud services since 2015. He has been involved in designing and implementing cloud environments from both the IT and security aspects. He has worked with AWS, Azure, and Google Cloud in many different organizations (in the banking, academia, and healthcare sectors). He has attained several top cloud security certifications – CCSP, CCSK, and AWS. He shares his knowledge about cloud security and adoption through social media (LinkedIn, Twitter, Medium, and more) for the benefit of cloud experts worldwide.

In this Book

  • Code Bundle and Coloured Images
  • Introduction to Cloud Native Applications
  • Securing Modern Design Architectures
  • Containers and Kubernetes for Cloud Native Applications
  • Serverless for Cloud Native Applications
  • Building Secure CI/CD Pipelines
  • The 12-Factor Application Methodology
  • Using Infrastructure as Code
  • Authorization and Policy as Code
  • Implementing Immutable Infrastructure
  • Encryption and Secrets Management
  • Threat Management in Cloud Native Applications
  • Summary and Key Takeaways
SHOW MORE
FREE ACCESS

YOU MIGHT ALSO LIKE

Rating 4.5 of 191 users Rating 4.5 of 191 users (191)
Rating 4.5 of 133 users Rating 4.5 of 133 users (133)