Accelerating DevSecOps on AWS: Create Secure CI/CD Pipelines Using Chaos and AIOps

Nikit Swaraj

Language: English

Publisher: Packt Publishing

Published: Apr 27, 2022

Description:

Build high-performance CI/CD pipelines that are powered by AWS and the most cutting-edge tools and techniques

Key Features

  • Master the full AWS developer toolchain for building high-performance, resilient, and powerful CI/CD pipelines
  • Get to grips with Chaos engineering, DevSecOps, and AIOps as applied to CI/CD
  • Employ the latest tools and techniques to build a CI/CD pipeline for application and infrastructure

Book Description

Continuous integration and continuous delivery (CI/CD) has never been simple, but these days the landscape is more bewildering than ever; its terrain riddled with blind alleys and pitfalls that seem almost designed to trap the less-experienced developer. If you're determined enough to keep your balance on the cutting edge, this book will help you navigate the landscape with ease.

This book will guide you through the most modern ways of building CI/CD pipelines with AWS, taking you step-by-step from the basics right through to the most advanced topics in this domain.

The book starts by covering the basics of CI/CD with AWS. Once you're well-versed with tools such as AWS Codestar, Proton, CodeGuru, App Mesh, SecurityHub, and CloudFormation, you'll focus on chaos engineering, the latest trend in testing the fault tolerance of your system. Next, you'll explore the advanced concepts of AIOps and DevSecOps, two highly sought-after skill sets for securing and optimizing your CI/CD systems. All along, you'll cover the full range of AWS CI/CD features, gaining real-world expertise.

By the end of this AWS book, you'll have the confidence you need to create resilient, secure, and performant CI/CD pipelines using the best techniques and technologies that AWS has to offer.

What you will learn

  • Use AWS Codestar to design and implement a full branching strategy
  • Enforce Policy as Code using CloudFormation Guard and HashiCorp Sentinel
  • Master app and infrastructure deployment at scale using AWS Proton and review app code using CodeGuru
  • Deploy and manage production-grade clusters using AWS EKS, App Mesh, and X-Ray
  • Harness AWS Fault Injection Simulator to test the resiliency of your app
  • Wield the full arsenal of AWS Security Hub and Systems Manager for infrastructure security automation
  • Enhance CI/CD pipelines with the AI-powered DevOps Guru service

Who this book is for

This book is for DevOps engineers, engineering managers, cloud developers, and cloud architects. Basic experience with the software development life cycle, DevOps, and AWS is all you need to get started.

Table of Contents

  1. CI/CD using AWS Codestar
  2. Enforcing Policy As Code on Cloudformation and Terraform
  3. CI/CD using AWS Proton & Introduction to AWS CodeGuru
  4. Working with AWS EKS and AppMesh
  5. Infrastructure security Automation using Security Hub and Systems Manager
  6. Chaos Engineering with AWS Fault Injection Simulator (FIS)
  7. Infrastructure Security Automation Using AWS Security Hub and Guard Duty
  8. Devsecops Pipelines Including Chaos and AWS Native services
  9. DevSecOps Pipelines Using AWS Services and Popular tools
  10. AIOps with AWS DevOps Guru

Review

"This book covers three aspects of IT operations. It first shows you how to use AWS developer tools to build a cloud-native end-to-end DevOps pipeline. Following the step-by-step method, anyone who is new to DevOps and has some basic knowledge of the cloud will be able to easily master the creation of a production-grade CI/CD pipeline. This book uses Guard and HashiCorp Sentinel to cover the security aspects of Infrastructure as Code and Policy as Code. Following the creation of a CI/CD pipeline, Infrastructure, and Policy as Code, it demonstrates how to use AWS Proton to spin up a CI/CD pipeline and infrastructure at scale. This is a fantastic and relatively new offering from AWS. The notion of chaos engineering is then discussed in detail in one of the book's chapters, with several examples on different layers of systems to test their resiliency using AWS native service Fault Injection Simulator. The finest aspect of this book is how well it covers the entire security toolchain of the DevSecOps pipeline, including detailed instructions on how to build and integrate it with the chaos engineering service. The final and most essential component of this book provided me with an understanding of AIOps. Working as the Director of IT Operations and Business, it's critical for me to understand why any new technology is being introduced. And this book goes into great detail about it using AWS DevOps Guru with various examples on the Kubernetes cluster. I thoroughly enjoyed this book and learned a lot about the new AWS services as well as the concepts of DevSecOps, chaos engineering, and AIOps. It's definitely worth reading for anyone who is running IT operation or SDLC management."

--

Chandan Bhattacharjee, Senior Director, NTT Ltd.

About the Author

Nikit Swaraj is an experienced solution architect. He is well versed in the melding of development and operations to deliver efficient code. Nikit has expertise in designing, developing, and delivering enterprise-wide solutions that meet business requirements and enhance operational efficiency. As an AWS solution architect, he has plenty of experience in designing end-to-end IT solutions and leading and managing complete projects within time and budgetary constraints. He contributes to open source toolsandhas experience working with startups as well enterprise including FSI, Public and Governement sector. He holds various professional certification from AWS, Red Hat, CNCF and Hashicorp. He loves to share his experience with latest technologies in AWS Meetups.