Understand unique security patterns related to identity and access management, infrastructure, data and workload protection, compliance and posture management, and zero trust for your hybrid cloud deployments

Key Features

• Secure cloud infrastructure, applications, data, and shift left security to create DevSecOps
• Explore patterns for continuous security, automated threat detection and accelerated incident response
• Leverage hybrid cloud security patterns for protecting critical data using a zero trust model
• Purchase of the print or Kindle book includes a free eBook in the PDF format
• 
  

Book Description

Security is a primary concern for enterprises going through digital transformation and accelerating their journey to multi-cloud environments. This book recommends a simple pattern-based approach to architecting, designing and implementing security for workloads deployed on AWS, Microsoft Azure, Google Cloud, and IBM Cloud.

The book discusses enterprise modernization trends and related security opportunities and challenges. You'll understand how to implement identity and access management for your cloud resources and applications. Later chapters discuss patterns to protect cloud infrastructure (compute, storage and network) and provide protection for data at rest, in transit and in use. You'll also learn how to shift left and include security in the early stages of application development to adopt DevSecOps. The book also deep dives into threat monitoring, configuration and vulnerability management, and automated incident response. Finally, you'll discover patterns to implement security posture management backed with intelligence and automated protection to stay ahead of threats.

By the end of this book, you'll have learned all the hybrid cloud security patterns and be able to use them to create zero trust architecture that provides continuous security and compliance for your cloud workloads.

What you will learn

• Address hybrid cloud security challenges with a pattern-based approach
• Manage identity and access for users, services, and applications
• Use patterns for secure compute, network isolation, protection, and connectivity
• Protect data at rest, in transit and in use with data security patterns
• Understand how to shift left security for applications with DevSecOps
• Manage security posture centrally with CSPM
• Automate incident response with SOAR
• Use hybrid cloud security patterns to build a zero trust security model

Who this book is for

The book is for cloud solution architects, security professionals, cloud engineers, and DevOps engineers, providing prescriptive guidance on architecture and design patterns for protecting their data and securing applications deployed on hybrid cloud environments. Basic knowledge of different types of cloud providers, cloud deployment models, and cloud consumption models is expected.

Table of Contents

1. Opportunities and Challenges with Hybrid Multi-cloud Solutions
2. Understanding Shared Responsibility Model for Cloud Security
3. Cloud Identity and Access Management
4. Implementing Identity and Access Management for Applications
5. How to Secure Compute Infrastructure
6. Implementing Network Isolation, Secure Connectivity, and Protection
7. Data Security Patterns
8. Shift Left Security for DevOps
9. Managing the Security Posture for Your Cloud Deployments
10. Building Zero Trust Architecture with Hybrid Cloud Security Patterns

About the Author

Sreekanth Iyer is a thought leader in architecture with over 25 years of experience building enterprise solutions across multiple industries. He is currently working as a Principal Architect with Apptio. Prior to this role, he worked as an Executive IT Architect at IBM. He has served as a trusted advisor on digital transformation strategy and journey to cloud for many enterprise clients. He is an expert in cloud engineering, security, complex integration, and app modernization. He is an IBM Master Inventor with more than 60 patents. He has built strong software engineering teams and made outstanding contributions to create security reference architectures. When he is not working, he enjoys music and his time with family and friends.