Free Shipping on Orders of $40 or More
Security Chaos Engineering: Sustaining Resilience in Software and Systems

Security Chaos Engineering: Sustaining Resilience in Software and Systems

by Kelly Shortridge, Aaron Rinehart
Security Chaos Engineering: Sustaining Resilience in Software and Systems

Security Chaos Engineering: Sustaining Resilience in Software and Systems

by Kelly Shortridge, Aaron Rinehart

Overview

Cybersecurity is broken. Year after year, attackers remain unchallenged and undeterred, while engineering teams feel pressure to design, build, and operate "secure" systems. Attacks can't be prevented, mental models of systems are incomplete, and our digital world constantly evolves. How can we verify that our systems behave the way we expect? What can we do to improve our systems' resilience?

In this comprehensive guide, authors Kelly Shortridge and Aaron Rinehart help you navigate the challenges of sustaining resilience in complex software systems by using the principles and practices of security chaos engineering. By preparing for adverse events, you can ensure they don't disrupt your ability to innovate, move quickly, and achieve your engineering and business goals.

  • Learn how to design a modern security program
  • Make informed decisions at each phase of software delivery to nurture resilience to attack
  • Understand the complex systems dynamics upon which security outcomes depend
  • Navigate technical and organizational trade-offs that distort defensive decision-making
  • Explore chaos experimentation to verify critical assumptions about systems security
  • Learn how major enterprises leverage security chaos engineering

Related collections and offers

Product Details

ISBN-13: 9781098113827
Publisher: O'Reilly Media, Incorporated
Publication date: 05/16/2023
Pages: 340
Sales rank: 799,073
Product dimensions: 7.00(w) x 9.19(h) x 0.00(d)

About the Author

Kelly Shortridge is a Senior Principal Engineer at Fastly. Shortridge is author of Security Chaos Engineering (O'Reilly Media) and is best known for their work on resilience in complex software systems, the application of behavioral economics to cybersecurity, and bringing security out of the dark ages. Shortridge has been a successful enterprise product leader as well as a startup founder (with an exit to CrowdStrike) and investment banker. Shortridge frequently advises Fortune 500s, investors, startups, and federal agencies and has spoken at major technology conferences internationally, including Black Hat USA, O'Reilly Velocity Conference, and RSA Conference. Shortridge’s research has been featured in ACM, IEEE, and USENIX, spanning behavioral science in cybersecurity, deception strategies, and the ROI of software resilience. They also serve on ACM Queue's magazine editorial board.

Aaron Rinehart has spent his career solving complex engineering problems and transforming cyber security practices across a diverse set of industries: healthcare, insurance, government, aerospace, technology, higher education, and the military. Aaron has been expanding the possibilities of chaos engineering in its application to other safety-critical portions of the IT domain, most notably in cybersecurity. He began shaping the application of chaos engineering within cyber security during his tenure as the Chief Security Architect at a Fortune 4, UnitedHealth Group (UHG). Rinehart is a frequently requested speaker at respective media outlets and conferences, most notably RSA, O'Reilly's Velocity, Blackhat/DefCon, GOTO, OWASP Global, and QCon. Rinehart has been interviewed and quoted in various publications including the Huffington Post, ABC News, TechTarget, DarkReading, SecurityWeekly, IEEE, and the Washington Post.

Customer Reviews