Security for cloud-native applications is an overview of cloud-native application’s characteristics from a security point of view, filled with best practices for securing services based on AWS, Azure, and GCP infrastructure.

This book is a practical guide for securing cloud-native applications throughout their lifecycle. It establishes foundational knowledge of cloud services and cloud-native characteristics. It focuses on securing design approaches like APIs, microservices, and event-driven architectures. Specific technologies like containers, Kubernetes, and serverless functions are covered with security best practices. The book emphasizes integrating security throughout development using CI/CD pipelines and IaC tools. It explores policy as code for enforcing security policies and immutable infrastructure for enhanced security posture. Key management and threat detection strategies are also covered. Finally, the book offers a practical example and resources for further learning.

By the end of the book, the reader will be able to design and secure modern applications using the public cloud scale, managed services, automation, and built-in security controls.

KEY FEATURES  

• An overview of security in cloud-native applications, such as modern architectures, containers, CI/CD pipeline, and so on.
• Using automation, such as infrastructure as code and policy as code, to achieve security at scale.
• Implementing security, from encryption and secrets management to threat management.

WHAT YOU WILL LEARN

• How to secure modern design architectures from APIs, event-driven architectures, and microservices.
• How to secure applications using containers and the Kubernetes platform.
• How to secure applications using serverless/function-as-a-service.
• How to implement key and secrets management as part of cloud-native applications.
• How to implement the 12-factor application methodology and immutable infrastructure in cloud-native applications.

WHO THIS BOOK IS FOR

This book is for security professionals, software development teams, DevOps and cloud architects, and all those who are designing, maintaining, and securing cloud-native applications.

1. Introduction to Cloud Native Applications
2. Securing Modern Design Architectures
3. Containers and Kubernetes for Cloud Native Applications
4. Serverless for Cloud Native Applications
5. Building Secure CI/CD Pipelines
6. The 12-Factor Application Methodology
7. Using Infrastructure as Code
8. Authorization and Policy as Code
9. Implementing Immutable Infrastructure
10. Encryption and Secrets Management
11. Threat Management in Cloud Native Applications
12. Summary and Key Takeaways

Eyal Estrin is a cloud security architect working with cloud services since 2015. He has been involved in designing and implementing cloud environments from both the IT and security aspects. He has worked with AWS, Azure, and Google Cloud in many different organizations (in the banking, academia, and healthcare sectors). He has attained several top cloud security certifications – CCSP, CCSK, and AWS. He shares his knowledge about cloud security and adoption through social media (LinkedIn, Twitter, Medium, and more) for the benefit of cloud experts worldwide.