Cloud Native Security

If you are interested in learning about how containers work, container security, DevSecOps tooling, Cloud Security Posture Management (CSPM), Cloud Workload Protection (CWP) and advanced Kubernetes security then read on.
Order on Amazon Learn More
Cloud Native Security book cover by Chris Binnie and Rory McCune

What's In The Book

Suitable for all IT professionals the comprehensive, hands-on book starts with cloud native security topics optimised for mid-level engineering experience and, through a well-formulated, detailed journey of learning, ends with advanced topics.

Master Container Fundamentals

Learn to explain exactly what a Linux container is and use hands-on examples to understand how to secure them.

Install And Configure CI/CD DevSecOps Tooling

Understand key DevSecOps areas and shift security to the left.

Cloud Security Posture Management

Enforce, monitor and audit cloud services across all platforms.

Advanced Kubernetes Security & Attack Insights

Learn attacker tactics and mitigation processes for Kubernetes.

Advanced Container Runtime Security

Master runtime safeguards for containerised workloads.

Reduce Cloud Operating Costs With Open Source

Use OSS tools to improve security and cut operational spend.

Who This Book Is For

DevOps engineers and developers are commonly asked to shift security to the left and adopt DevSecOps practices. Learn the skills that your job will increasingly require and minimise attack surfaces on all cloud-native infrastructure components.

DevOps Engineers

DevOps teams will be expected to embrace security further.

Developers

Developers increasingly need to shift security to the left.

Platform Engineers

Operate containerised workloads with deep security know-how.

System Administrators

Automate node hardening with leading security controls.

About The Authors

Written by two industry veterans with over twenty years of IT experience, Cloud Native Security contains niche know-how and hard-won technical knowledge.

The main author Chris Binnie is a cloud native security consultant with almost thirty years of experience in IT security. He specialises in cloud native security, Linux server hardening, and DevSecOps practices.

Seasoned writer Chris Binnie has authored multiple cybersecurity books including Linux Server Security: Hack and Defend and has been a writer for Linux Magazine and ADMIN Magazine for around 15 years. He founded a colocation business in 2001 with six bandwidth providers across two data centres to achieve zero downtime, and designed and then built a media streaming platform in 2012 to serve HD video to 77 countries with live sports and music events.

Co-author Rory McCune created NCC Group's Mastering Container Security course and regularly presents on Kubernetes security at international conferences.

The book collects their combined experience across 20 chapters of invaluable knowledge.

To whet your appetite, there are some notes in GitHub that could loosely be described as security guides, however use the information that they contain with care, treating it as untested. There is a Linux Server Security page that looks at focusing on starting as you mean to go on with server and workstation builds.

Another guide focuses solely on AWS security, using the AWS CLI, which could be translated into Terraform potentially. It can be found in GitHub at the following page: AWS Cloud Security. Many of the cloud security principles covered apply equally to other cloud providers, such as GCP and Azure.

There is also a guide on Kubernetes Security. It looks at the need for considered RBAC settings, network policies, cluster security and compliance, secrets management, image signing and admission controller configuration among several other important topics.

Get In Touch

contactme @ chrisbinnie.com