Where the magic (and the mayhem) happens¶
Welcome to systems engineering: the art of making sure your infrastructure doesn’t collapse like a Jenga tower every time someone runs git push.
A well-secured system is like a good joke. If you have to explain it, it’s not working.
- Notes from the security trenches: A SysEngineer’s ongoing journey
- The story sofar
- Growing list of challenges
- SSDLC methodologies
- Implementing SSDLC
- Risk assessment
- Privacy Impact Assessment (PIA)
- Threat modelling
- Secure coding
- Security-testing plan and practices
- Security automation
- Shared responsibility
- Securing virtual machines
- Securing managed database services
- Securing containers
- Securing serverless/function as a service
- Securing object storage
- Securing block storage
- Securing file storage
- Securing the container storage interface
- Securing virtual networking
- Securing VPN services
- Securing DDoS protection services
- Identity management