Platform Engineering and Security: Security and Compliance Lntegration in Software Development Lifecycle using Platform Engineering

DESCRIPTION Modern software delivery faces growing complexities, from managing diverse cloud environments to ensuring security and compliance. Platform engineering has emerged as the solution, creating a secure, efficient path for developers. This book will help you understand this approach and build the tools necessary to streamline your software lifecycle. This book walks you through the essential components of a platform. You will begin by learning the foundational concepts of platform engineering, understanding the culture and product mindset, and designing a robust architecture. It will show you how to codify infrastructure and security using policy as code, with a special focus on leveraging Kubernetes as the core of a secure delivery platform. You will also learn to embed security through the shift left approach and the creation of self-service capabilities. The book concludes with insights into observability, data lakes, and the future of the field with AI/ML and Pai-Ops. By the end of this book, you will develop an understanding of platform engineering, along with the practical knowledge required to build, manage, and optimize a secure software delivery platform. You will be equipped with the practical knowledge to reduce developer cognitive load, accelerate product development, and ensure consistent security and governance, transforming your organization's approach to software delivery. WHAT YOU WILL LEARN ? Learn to transition from DevOps to a developer-centric product mindset. ? Implement a shift left DevSecOps approach to secure pipelines. ? Understand how to codify infrastructure and security using policy as code. ? Build and operate secure infrastructure platforms. ? Transition from DevOps to automated everything as code. ? Design internal developer platform architecture and manage policy as code automation. ? Reduce cloud-native complexity with a containerization platform and best practices. ? Reduce the complexity of infrastructure provisioning. ? Learn about policy requirements and governance in SDLC. WHO THIS BOOK IS FOR This book is for DevOps and security architects, and platform and security engineers. It is an excellent resource for professionals with knowledge of SDLC, DevOps, and information security who want to deepen their skills in building a secure platform.