Cloud native applications don’t just run on a different platform; they overhaul the scope of the applications, the methodologies with which they’re built, and the skills and ownership around them. To stay relevant, security practices need to undergo a transformation of a similar magnitude. We have to embrace a developer-first (devfirst), Cloud Native Application Security approach and anchor our practices to this new organizational reality.
This book will help you understand the market transition to cloud native apps and the organizational changes it includes. Armed with this context, it describes the required changes for our security practices and tooling and why they matter. Last, it provides concrete examples for some of these changes, meant to both help you understand the concepts better and act as candidates for the first steps you may take on the journey.
By the end of this book, you should understand why and how to embrace a Cloud Native Application Security approach.