A must-read guide to a new and rapidly growing field in cybersecurity
In The DevSecOps Playbook: Deliver Continuous Security at Speed, Wiley CISO and CIO Sean D. Mack delivers an expert analysis of how to keep your business secure, relying on the classic triad of people, process, and technology to examine - in depth - every component of DevSecOps. In the book, you'll learn why DevSecOps is as much about people and collaboration as it is about technology and how it impacts every part of our cybersecurity systems.
You'll explore the shared responsibility model at the core of DevSecOps, as well as the people, processes, and technology at the heart of the framework. You'll also find: - An insightful overview of DevOps and DevSecOps principles and practices - Strategies for shifting security considerations to the front-end of the development cycle - Ways that the standard security model has evolved over the years and how it has impacted our approach to cybersecurity
A need-to-read resource for security leaders, security engineers, and privacy practitioners across all industries, The DevSecOps Playbook will also benefit governance, risk, and compliance specialists who seek to better understand how a transformed approach to cybersecurity can impact their business for the better.
In The DevSecOps Playbook: Deliver Continuous Security at Speed, Wiley CISO and CIO Sean D. Mack delivers an expert analysis of how to keep your business secure, relying on the classic triad of people, process, and technology to examine - in depth - every component of DevSecOps. In the book, you'll learn why DevSecOps is as much about people and collaboration as it is about technology and how it impacts every part of our cybersecurity systems.
You'll explore the shared responsibility model at the core of DevSecOps, as well as the people, processes, and technology at the heart of the framework. You'll also find: - An insightful overview of DevOps and DevSecOps principles and practices - Strategies for shifting security considerations to the front-end of the development cycle - Ways that the standard security model has evolved over the years and how it has impacted our approach to cybersecurity
A need-to-read resource for security leaders, security engineers, and privacy practitioners across all industries, The DevSecOps Playbook will also benefit governance, risk, and compliance specialists who seek to better understand how a transformed approach to cybersecurity can impact their business for the better.
Table of Contents
Foreword xiii
Introduction xv
Chapter 1 Introducing DevSecOps 1
Chapter 2 The Evolution of Cybersecurity (from Perimeter to Zero Trust) 23
Chapter 3 DevSecOps People 47
Chapter 4 DevSecOps Process 77
Chapter 5 DevSecOps Technology 99
Chapter 6 DevSecOps Governance 125
Chapter 7 Driving Transformation in Enterprise Environments 147
Chapter 8 Measuring DevSecOps 169
Chapter 9 Conclusion 195
Acknowledgments 207
About the Author 209
Index 211
