I wrote securing devops to fill a gap in teaching security to operations and development teams that adopt devops, by collecting the best practices we had developped at mozilla building complex cloud services for Firefox.
The book is organized in a teachable format that allows the reader to learn security while they progress in the world of devops and build cloud services.
I've always being a programmer and operator before being a security engineer and what I wanted is to translate my own learning experience in a way that would speak to people entering the field. Nowadays I spend most of my time doing security architecture on large-scale web applications and web services and a lot of the problems we solve everyday relate to how we build and operate these services. DevOps helps us modernize practices that, in the old world of operations, were insecure or hard to secure, and I tried to highlight how these modern development and operation techniques really increase the security of online services.
I hope you find the book useful and I'm more than happy to answer questions over the next couple of days. Thanks!