Implementing DevSecOps with Docker and Kubernetes

José Manuel Ortega Candel

SKU: 9789355511195


ISBN: 9789355511188
eISBN: 9789355511195
Authors: José Manuel Ortega Candel
Rights: Worldwide
Publishing Date: February2022
Pages: 480
Dimension: 7.5*9.25 Inches
Book Type: Paperback

Building and securely deploying container-based applications with Docker and Kubernetes using open source tools.


  • Real-world examples of vulnerability analysis in Docker containers.
  • Includes recommended practices for Kubernetes and Docker with real execution of commands.
  • Includes essential monitoring tools for Docker containers and Kubernetes configuration.


This book discusses many strategies that can be used by developers to improve their DevSecOps and container security skills. It is intended for those who are active in software development. After reading this book, readers will discover how Docker and Kubernetes work from a security perspective.

The book begins with a discussion of the DevSecOps tools ecosystem, the primary container platforms and orchestration tools that you can use to manage the lifespan and security of your apps. Among other things, this book discusses best practices for constructing Docker images, discovering vulnerabilities, and better security. The book addresses how to examine container secrets and networking. Backed with examples, the book demonstrates how to manage and monitor container-based systems, including monitoring and administration in Docker.

In the final section, the book explains Kubernetes' architecture and the critical security threats inherent in its components. Towards the end, it demonstrates how to utilize Prometheus and Grafana to oversee observability and monitoring in Kubernetes management.


  • Familiarize yourself with Docker as a platform for container deployment.
  • Learn how Docker can control the security of images and containers.
  • Discover how to safeguard and monitor your Docker environment for vulnerabilities.
  • Explore the Kubernetes architecture and best practices for securing your Kubernetes environment.
  • Learn and explore tools for monitoring and administering Docker containers.
  • Learn and explore tools for observing and monitoring Kubernetes environments.


This book is intended for DevOps teams, cloud engineers, and cloud developers who wish to obtain practical knowledge of DevSecOps, containerization, and orchestration systems like Docker and Kubernetes. Knowing the fundamentals of Docker and Kubernetes would be beneficial but not required.

  1. Getting Started with DevSecOps
  2. Container Platforms
  3. Managing Containers and Docker Images
  4. Getting Started with Docker Security
  5. Docker Host Security
  6. Docker Images Security
  7. Auditing and Analyzing Vulnerabilities in Docker Containers
  8. Managing Docker Secrets and Networking
  9. Docker Container Monitoring
  10. Docker Container Administration
  11. Kubernetes Architecture
  12. Kubernetes Security
  13. Auditing and Analyzing Vulnerabilities in Kubernetes
  14. Observability and Monitoring in Kubernetes

José Manuel Ortega Candel is a Software Engineer and Security Researcher who focuses on new technologies, open-source, security, and testing. His career target has been to specialize in Python and DevOps security. Currently, he is working as a security tester engineer. He analyzes and tests the security of applications. Conferences and talks related to Python, security, and docker are available on his personal site

LinkedIn Profile: José Manuel Ortega Candel

Blog Link:

You may also like

Recently viewed