Cloud Security Handbook: Find out how to effectively secure cloud environments using AWS, Azure, and GCP

Estrin, Eyal

買這商品的人也買了...

商品描述

A comprehensive reference guide to securing the basic building blocks of cloud services, with actual examples for leveraging Azure, AWS, and GCP built-in services and capabilities

Key Features

  • Discover practical techniques for implementing cloud security
  • Learn how to secure your data and core cloud infrastructure to suit your business needs
  • Implement encryption, detect cloud threats and misconfiguration, and achieve compliance in the cloud

Book Description

Securing resources in the cloud is challenging, given that each provider has different mechanisms and processes. Cloud Security Handbook helps you to understand how to embed security best practices in each of the infrastructure building blocks that exist in public clouds.

This book will enable information security and cloud engineers to recognize the risks involved in public cloud and find out how to implement security controls as they design, build, and maintain environments in the cloud. You'll begin by learning about the shared responsibility model, cloud service models, and cloud deployment models, before getting to grips with the fundamentals of compute, storage, networking, identity management, encryption, and more. Next, you'll explore common threats and discover how to stay in compliance in cloud environments. As you make progress, you'll implement security in small-scale cloud environments through to production-ready large-scale environments, including hybrid clouds and multi-cloud environments. This book not only focuses on cloud services in general, but it also provides actual examples for using AWS, Azure, and GCP built-in services and capabilities.

By the end of this cloud security book, you'll have gained a solid understanding of how to implement security in cloud environments effectively.

What you will learn

  • Secure compute, storage, and networking services in the cloud
  • Get to grips with identity management in the cloud
  • Audit and monitor cloud services from a security point of view
  • Identify common threats and implement encryption solutions in cloud services
  • Maintain security and compliance in the cloud
  • Implement security in hybrid and multi-cloud environments
  • Design and maintain security in a large-scale cloud environment

Who this book is for

This book is for IT or information security personnel taking their first steps in the public cloud or migrating existing environments to the cloud. Cloud engineers, cloud architects, or cloud security professionals maintaining production environments in the cloud will also benefit from this book. Prior experience of deploying virtual machines, using storage services, and networking will help you to get the most out of this book.

商品描述(中文翻譯)

《雲端安全手冊》是一本全面的參考指南,介紹了保護雲服務基本組件的方法,並提供了使用Azure、AWS和GCP內建服務和功能的實際示例。

主要特點包括:
- 探索實施雲安全的實用技巧
- 學習如何保護數據和核心雲基礎設施以滿足業務需求
- 實施加密、檢測雲威脅和配置錯誤,並在雲中實現合規性

《書籍描述》部分介紹了在公共雲中嵌入安全最佳實踐的方法,幫助信息安全和雲工程師了解公共雲的風險,並在設計、構建和維護雲環境時實施安全控制。書中首先介紹了共享責任模型、雲服務模型和雲部署模型的基礎知識,然後深入探討了計算、存儲、網絡、身份管理、加密等基礎組件的基礎知識。接下來,您將探索常見的威脅,並了解如何在雲環境中保持合規性。隨著學習的進展,您將從小規模雲環境實施安全措施,進而擴展到生產就緒的大規模環境,包括混合雲和多雲環境。本書不僅關注雲服務的一般性質,還提供了使用AWS、Azure和GCP內建服務和功能的實際示例。

通過閱讀本書,您將全面了解如何在雲環境中有效實施安全措施。

《你將學到什麼》部分介紹了以下內容:
- 在雲中保護計算、存儲和網絡服務
- 熟悉雲中的身份管理
- 從安全角度審計和監控雲服務
- 在雲服務中識別常見威脅並實施加密解決方案
- 在雲中維護安全性和合規性
- 在混合和多雲環境中實施安全措施
- 在大規模雲環境中設計和維護安全性

《本書適合對象》部分指出,本書適合初次接觸公共雲或將現有環境遷移到雲端的IT或信息安全人員。同時,雲工程師、雲架構師或在雲中維護生產環境的雲安全專業人員也會從本書中受益。具備部署虛擬機器、使用存儲服務和網絡的經驗將有助於更好地理解本書的內容。

目錄大綱

1. Introduction to Cloud Security
2. Securing Compute Services
3. Securing Storage Services
4. Securing Network Services
5. Effective Strategies to Implement IAM Solutions
6. Monitoring and Auditing of Your Cloud Environments
7. Applying Encryption in Cloud Services
8. Understanding Common Security Threats to Cloud Computing
9. Handling Compliance and Regulation
10. Engaging with Cloud Providers
11. Managing Hybrid Clouds
12. Managing Multi-Cloud Environments
13. Security in Large-Scale Environments

目錄大綱(中文翻譯)

1. 雲安全介紹
2. 保護計算服務
3. 保護儲存服務
4. 保護網路服務
5. 實施身份和存取管理解決方案的有效策略
6. 監控和審計您的雲環境
7. 在雲服務中應用加密
8. 了解雲計算常見的安全威脅
9. 處理合規性和法規要求
10. 與雲服務提供商合作
11. 管理混合雲
12. 管理多雲環境
13. 大規模環境中的安全性