Cloud Auditing Best Practices: Perform Security and IT Audits across AWS, Azure, and GCP by building effective cloud auditing plans
- Length: 268 pages
- Edition: 1
- Language: English
- Publisher: Packt Publishing
- Publication Date: 2023-01-13
- ISBN-10: 1803243775
- ISBN-13: 9781803243771
- Sales Rank: #704906 (See Top 100 Books)
Explore tools, techniques, and practices to remove performance bottlenecks and enhance the stability of your Laravel and PHP web applications
Key Features
- Get a complete view of what it takes to design and build a high-performing application with Octane
- Reuse objects across requests and execute application logic asynchronously
- Learn key elements to design and build a performance-optimized and production-ready application
Book Description
Laravel Octane is a very powerful component in the Laravel ecosystem that can help you achieve remarkable app performance. With Laravel Octane, you will find tools (queues, cache, and tables) that facilitate a new asynchronous approach for improving application performance.
This book highlights how Laravel Octane works, what steps to take in designing an application from the start, what tools you have at your disposal, and how to set up production environments. It provides complete coverage of the strategies, tools, and best practices to make your apps scalable and performant. This is especially important as optimization is usually the overlooked part in the application development lifecycle. You will explore the asynchronous approach in Laravel and be able to release high-performing applications that have a positive impact on the end-user experience.
By the end of this book, you will find yourself designing, developing, and releasing high-performance applications.
What you will learn
- Understand the dynamics of the request life cycle in a classic Laravel application
- Explore possibilities with OpenSwoole and Roadrunner and choose the best solution for your application
- Analyze the potential bottlenecks of a classic web application
- Configure Laravel Octane with Roadrunner and OpenSwoole
- Implement functionality using asynchronous mechanisms and run tasks in parallel in the Laravel app
- Prepare the production environment to host Laravel Octane and its dependencies
- Understand the pros and cons of applying potential enhancements to your Laravel app
Who this book is for
The book is for existing Laravel developers who want to improve their software architecture, from a basic or standard architecture to a more scalable and performant one. Basic knowledge of Laravel fundamentals is required.
Cover Title Page Copyright and Credits Contributors About the reviewers Table of Contents Preface Part 1: The Basics of Cloud Architecture and Navigating – Understanding Enterprise Cloud Auditing Essentials Chapter 1: Cloud Architecture and Navigation Understanding cloud auditing Shared responsibility of IT cloud controls Role of an IT auditor Cloud architecture and service models Cloud architecture Cloud services Navigating cloud provider environments Navigating Amazon AWS EC2 Navigating the Microsoft Azure portal Navigating GCP Summary Chapter 2: Effective Techniques for Preparing to Audit Cloud Environments Preparing to perform a cloud assessment Effective techniques for aligning IT controls to cloud environments Auditing frameworks and governance Basic cloud auditing tools and frameworks Native tools for auditing Amazon AWS Native tools for auditing Microsoft’s Azure portal Native tools for auditing Google Cloud Platform Open-source tools Native tools versus open-source tools Leveraging policy and compliance automation Summary Part 2: Cloud Security and IT Controls Chapter 3: Identity and Access Management Controls User authentication and authorization Example IAM controls Amazon AWS IAM Microsoft Azure GCP Permissions, roles, and groups Key privileged access, roles, and policies Device management Reviewing activity logs AWS Azure GCP Summary Chapter 4: Network, Infrastructure, and Security Controls Security control centers Amazon Virtual Private Cloud Azure Virtual Network Google Cloud Platform Virtual Private Cloud Network controls Amazon Virtual Private Cloud Azure Virtual Network Google Cloud Platform Virtual Private Cloud Security policies Amazon Virtual Private Cloud Azure Virtual Network Google Cloud Platform Virtual Private Cloud Data security Summary Chapter 5: Financial Resource and Change Management Controls Example resource management controls Center for Internet Security (CIS) benchmark controls CSA Cloud Controls Matrix Policies for resource management Performing changes Change management integration and workflows Change history Financial billing and cost controls Financial resource ownership Summary Part 3: Executing an Effective Enterprise Cloud Audit Plan Chapter 6: Tips and Techniques for Advanced Auditing Common pitfalls Inability to forecast resource usage and costs The impact of shadow IT Avoiding automation Misconfiguration The inadvertent exposure of credentials Overly permissive access Tips, tricks, and techniques AWS Azure GCP Preparing for more advanced auditing Other clouds Oracle Cloud Infrastructure IBM Cloud Alibaba Cloud Summary Chapter 7: Tools for Monitoring and Assessing Basic cloud auditing tools within AWS Amazon CloudWatch Amazon Inspector Azure Azure Monitor Azure Network Watcher GCP Google Cloud Monitoring Network Intelligence Center Summary Chapter 8: Walk-Through – Assessing IAM Controls Preparing to assess cloud IAM controls Assessing authentication and authorization AWS IAM Microsoft Azure Assessing access assignment controls Microsoft Azure GCP Assessing privileged access controls AWS IAM Microsoft Azure Assessing device controls AWS IAM Microsoft Azure Summary Chapter 9: Walk-Through – Assessing Policy Settings and Resource Controls Preparing to assess network, infrastructure, and resource controls Assessing network and firewall settings Microsoft Azure Assessing resource management policies Microsoft Azure GCP Assessing data security policies AWS Microsoft Azure Summary Chapter 10: Walk-Through – Assessing Change Management, Logging, and Monitoring Policies Preparing to assess change management controls Assessing audit and logging configurations AWS Microsoft Azure GCP Assessing change management and configuration policies Azure Automation Terraform Policy Sentry Assessing monitoring and alerting policies AWS Azure GCP Summary Index Other Books You May Enjoy
Donate to keep this site alive
How to download source code?
1. Go to: https://github.com/PacktPublishing
2. In the Find a repository… box, search the book title: Cloud Auditing Best Practices: Perform Security and IT Audits across AWS, Azure, and GCP by building effective cloud auditing plans, sometime you may not get the results, please search the main title.
3. Click the book title in the search results.
3. Click Code to download.
1. Disable the AdBlock plugin. Otherwise, you may not get any links.
2. Solve the CAPTCHA.
3. Click download link.
4. Lead to download server to download.
