Название: Security Architecture for Hybrid Cloud: A Practical Method for Designing Security Using Zero Trust Principles
Автор: Mark Buckwell, Stefaan Van daele, Carsten Horst
Издательство: O’Reilly Media, Inc.
Год: 2024
Страниц: 521
Язык: английский
Формат: epub
Размер: 11.8 MB

As the transformation to hybrid multicloud accelerates, businesses require a structured approach to securing their workloads. Adopting zero trust principles demands a systematic set of practices to deliver secure solutions. Regulated businesses, in particular, demand rigor in the architectural process to ensure the effectiveness of security controls and continued protection.

This book provides the first comprehensive method for hybrid multicloud security, integrating proven architectural techniques to deliver a comprehensive end-to-end security method with compliance, threat modeling, and zero trust practices. This method ensures repeatability and consistency in the development of secure solution architectures.

Architects will learn how to effectively identify threats and implement countermeasures through a combination of techniques, work products, and a demonstrative case study to reinforce learning. You'll examine:

The importance of developing a solution architecture that integrates security for clear communication
Roles that security architects perform and how the techniques relate to nonsecurity subject matter experts
How security solution architecture is related to design thinking, enterprise security architecture, and engineering
How architects can integrate security into a solution architecture for applications and infrastructure using a consistent end-to-end set of practices
How to apply architectural thinking to the development of new security solutions

Audience:
We’ve written this book for anyone who is architecting security controls and designing the integration of them into an information system. Architectural thinking for security isn’t only for a security architect; it’s the responsibility of all architects designing an information system. It’s why this book is suitable for anyone involved in architecting systems.

We currently teach these concepts and techniques as a part of cybersecurity degree modules for UK NCSC-certified MSc degrees at two universities in the UK. The book incrementally builds on the concepts and techniques throughout, making it suitable for use in teaching. It’s thanks to the past students who asked for a book to study that we authored this book.

We’re assuming that you already have some broad understanding of information systems and cloud computing. Some hands-on experience will enable you to make good architectural decisions. Architects don’t learn by drawing diagrams; they build their expertise through the practical delivery of applications and infrastructure. Many practicing architects worldwide use this approach.

"Security Architecture for Hybrid Cloud provides a wealth of information to assist IT and security professionals, from strategic leadership to architects to engineers." - Sarah Brown Principal Cyber Security Lead, NATO NCI Agency

"This book provides comprehensive and accessible coverage of architecting for security that will become a standard reference in its field." - Paul Krause Emeritus Professor, University of Surrey








[related-news] [/related-news]