DevSecOps and DevOps for Linux - The Foundations

Read more

This book is a comprehensive guide tailored to help you develop the core skills necessary to succeed in the rapidly evolving field of DevOps and DevSecOps. It covers the intersection of development, security, and operations, equipping you with both the technical expertise and soft skills required for this role. Apart from the necessary theory, it provides a large number of examples as well as hands-on labs to familiarize you with practical applications.
The book begins with essential soft skills, introducing you to frameworks like Agile and Lean along with Scrum and Kanban. To better explain the topic and practical applicatins, an example Python project of an executable package is included. Then the book take you into a deepdive, demonstrating the process of gradually improving the project adding the explained topics as new features avoiding unnecessary rework. The book also covers security topics including source code compliance analysis and vulnerabilities scans, system security, data encryption and identity validation using GPG, X.509 certificates and PKI.
The book  delves on the most commonly used protocols (HTTP, TLS, LDAP), providing also an overview of service protocols such as SOAP and REST. Along with this it also covers containers (Docker, Podman), with an overview of Kubernetes and Helm, and a hands-on lab for installing Rancher and Deploying Gitea on top of it. Gitea is also exploited to delve into Git. The book ends showing how to operate with Ansible using playbooks, roles and collections. After reading this book  you will be able to solve complex challenges, create secure and maintainable solutions, and become a trusted and respected member of any DevSecOps team.
The book will not only teach you the technical concepts of DevSecOps but also to help you develop the professional mindset that will make you a sought-after DevSecOps expert. You will be able to solve complex challenges, create secure and maintainable solutions, and become a trusted and respected member of any DevSecOps team.
Whether you are an experienced engineer aiming to transition into DevSecOps or a student looking to build a career, this book provides a comprehensive, hands-on, and actionable guide to becoming a skilled DevSecOps professional.
You Will Learn:

• Understand the fundamental concepts of DevSecOps and hands-on skills in development, security, and operations
• Write effective, secure and reliable automations to support not only CI/CD, but the complete software lifecycle
• How to use key tools and technologies in DevSecOps, including Git, Ansible, Kubernetes, and more
• Essential soft skills like being a good team member and frameworks like Lean and Agile

Who is this book for: Aspiring DevOps and DevSecOps professionals, engineers looking to transition into DevOps roles, and anyone seeking a strong foundation in the practices and tools of the DevSecOps field.

List of contents

Chapter 1 - Holistic Skills Set - Team Working.- Chapter 2 - Holistic Skills Set - Solutions' Lifecycle.- Chapter 3 - Holistic Skills Set - An overview of Agile and Lean.- Chapter 4 - Holistic Skills Set - An overview of Scrum and Kanban.- Chapter 5 - The BASH Shell And Command Line Utilities.- Chapter 6 - Basic Data Formats.- Chapter 7 - Data Processing -  Regular Expressions (RegEX).- Chapter 8 - Data Processing -  Working with Grep.- Chapter 9 - Data Processing -  Working with Sed.- Chapter 10 - Data Processing - Working with AWK.- Chapter 11 - Structured Data Processing - XML with XPath, XMLStarlet and Python.- Chapter 12 - Structured Data Processing - JSON with Jq and Python.- Chapter 13 - Structured Data Processing - YAML with Yq and Python.- Chapter 14 - Developing A Python Project - Working with PyTest.- Chapter 15 - Developing A Python Project - Packaging As Wheel.- Chapter 16 - Developing A Python Project - Managing The Build With GNU Make.- Chapter 17 - Developing A Python Project - Packaging As RPM.- Chapter 18 - Developing A Python Project - The pre-commit framework.- Chapter 19 - Developing A Python Project - Auditing Source Code Compliance.- Chapter 20 - Developing A Python Project - Scanning Vulnerabilities.- Chapter 21 - Systems Security.- Chapter 22 - Securing Data and Validating Identity Through GPG.- Chapter 23 - X.509 Certificates And PKI.- Chapter 24 - Common Protocols - HTTP.- Chapter 25 - Common Protocols - TLS.- Chapter 26 - Common Protocols -  LDAP.-Chapter 27 - Working With Containers - The Ecosystem.- Chapter 28 - Working With Containers - Docker And Podman.- Chapter 29 - Working With Containers - Deploying Pulp3 Using Docker Compose
Chapter 30 - Service Protocols - SOAP and REST.- Chapter 31 - Kubernetes, Helm And Rancher.- Chapter 32 - Deploying Gitea Using The Helm Chart.- Chapter 33 - CI/CD And Continuous Delivery.- Chapter 34 - Working With Gitea Actions Workflows.- Chapter 35 - Version Management With Git.- Chapter 36 - An overview of SSH.- Chapter 37 - Ansible playbooks, roles and collections.

About the author

Marco Antonio Carcano is a professional with more than 27 years of professional experience mostly spent on Linux. After an initial time as a developer, he gradually moved to the systems field working most of the time in supporting the financial field as a System Engineer, System Architect and Solutions Architect. His current role is DevOps engineer at a visionary corporate in the software industry.

Summary

This book is a comprehensive guide tailored to help you develop the core skills necessary to succeed in the rapidly evolving field of DevOps and DevSecOps. It covers the intersection of development, security, and operations, equipping you with both the technical expertise and soft skills required for this role. Apart from the necessary theory, it provides a large number of examples as well as hands-on labs to familiarize you with practical applications.
The book begins with essential soft skills, introducing you to frameworks like Agile and Lean along with Scrum and Kanban. To better explain the topic and practical applicatins, an example Python project of an executable package is included. Then the book take you into a deepdive, demonstrating the process of gradually improving the project adding the explained topics as new features avoiding unnecessary rework. The book also covers security topics including source code compliance analysis and vulnerabilities scans, system security, data encryption and identity validation using GPG, X.509 certificates and PKI.
The book  delves on the most commonly used protocols (HTTP, TLS, LDAP), providing also an overview of service protocols such as SOAP and REST. Along with this it also covers containers (Docker, Podman), with an overview of Kubernetes and Helm, and a hands-on lab for installing Rancher and Deploying Gitea on top of it. Gitea is also exploited to delve into Git. The book ends showing how to operate with Ansible using playbooks, roles and collections. After reading this book  you will be able to solve complex challenges, create secure and maintainable solutions, and become a trusted and respected member of any DevSecOps team.
The book will not only teach you the technical concepts of DevSecOps but also to help you develop the professional mindset that will make you a sought-after DevSecOps expert. You will be able to solve complex challenges, create secure and maintainable solutions, and become a trusted and respected member of any DevSecOps team.
Whether you are an experienced engineer aiming to transition into DevSecOps or a student looking to build a career, this book provides a comprehensive, hands-on, and actionable guide to becoming a skilled DevSecOps professional.
You Will Learn:

• Understand the fundamental concepts of DevSecOps and hands-on skills in development, security, and operations
• Write effective, secure and reliable automations to support not only CI/CD, but the complete software lifecycle
• How to use key tools and technologies in DevSecOps, including Git, Ansible, Kubernetes, and more
• Essential soft skills like being a good team member and frameworks like Lean and Agile

Who is this book for: Aspiring DevOps and DevSecOps professionals, engineers looking to transition into Dev\Ops roles, and anyone seeking a strong foundation in the practices and tools of the DevSecOps field.