Books

Generic

• Learning DevSecOps by Michelle Ribeiro | Goodreads: Learn how to implement continuous security throughout your entire software development and delivery pipeline.

• Alice and Bob Learn Application Security by Tanya Janca | Goodreads: Learn application security from the very start, with this comprehensive and approachable guide.

• Securing DevOps: Security in the Cloud by Julien Vehent | Goodreads: Securing DevOps explores how the techniques of DevOps and security should be applied together to make cloud services safer.

• Secure by Design by Dan Bergh Johnsson | Goodreads: Secure by Design teaches developers how to use design to drive security in software development.

• DevSecOps: A leader’s guide to producing secure software without compromising flow, feedback and continuous improvement by Glenn Wilson | Goodreads: a structured approach to integrating security capabilities into your engineering process is an essential requirement for producing secure software without compromising the integrity of the DevOps framework.

• Epic Failures in DevSecOps: Volume 1 by Mark Miller | Goodreads

• Epic Failures in DevSecOps: Volume 2 by Eliza May Austin | Goodreads

• Hands-On Security in DevOps: Ensure continuous security, deployment, and delivery with DevSecOps by Tony Hsu | Goodreads: Protect your organization's security at all levels by introducing the latest strategies for securing DevOps DevOps has provided speed and quality benefits with continuous development and deployment methods, but it does not guarantee the security of an entire organization.

• Practical Security Automation and Testing: Tools and techniques for automated security scanning and testing in DevSecOps by Tony Hsiang-Chih Hsu | Goodreads: Your one stop guide to automating infrastructure security using DevOps and DevSecOps Security automation is the automatic handling of software security assessments tasks.

• Enterprise DevOps for Architects: Leverage AIOps and DevSecOps for secure digital transformation by Jeroen Mulder | Goodreads

• DevSecOps A Complete Guide - 2021 Edition by Gerardus Blokdyk | Goodreads (⚠️)

Language specific

• DevSecOps for .NET Core: Securing Modern Software Applications by Afzaal Ahmad Zeeshan | Goodreads (⚠️): Automate core security tasks by embedding security controls and processes early in the DevOps workflow through DevSecOps.