ep2024-12 Tanya Janca: Happy Holidays are Secure Code

The Unicorn Project is a fictionalized story about a DevOps transformation taking place at Parts Unlimited, the same company featured in 'The Phoenix Project'. The book follows Maxine, a senior lead developer and architect, who is exiled to the Phoenix Project after contributing to a payroll outage. She joins a group of corporate rebels aiming to overthrow the existing bureaucratic order, liberate developers, bring joy back to technology work, and enable the business to win in a time of digital disruption. The novel introduces the five ideals of Locality and Simplicity; Focus, Flow and Joy; Improvement of Daily Work; Psychological Safety; and Customer Focus, which are crucial for creating an environment that fosters business innovation and productivity.

This book offers a refreshing approach to secure coding by using analogies, stories of the characters Alice and Bob, real-life examples, technical explanations, and diagrams. It covers secure coding in popular languages like Python, Java, JavaScript, C/C++, SQL, C#, PHP, and more, as well as security for frameworks such as Angular, . Net, and React. The book includes topics on security best practices for APIs, mobile, web sockets, serverless, IoT, and service mesh, major vulnerability categories, the Secure System Development Life Cycle, threat modeling, testing, and code review. It is designed for a diverse audience, including software developers of all levels, budding security engineers, software architects, and application security professionals.

In this novel, Gene Kim, Kevin Behr, and George Spafford tell the story of Bill, an IT manager at Parts Unlimited, who is tasked with turning around the company's failing IT department. The book delves into the challenges of IT management, the importance of DevOps practices, and how these practices can lead to significant improvements in efficiency, reliability, and customer satisfaction.

The DevOps Handbook provides a detailed and practical roadmap for improving IT in any organization by bridging the gap between development and operations teams. It includes case studies from companies like Google, Capital One, Netflix, and others, demonstrating how DevOps practices can enhance business outcomes. The book focuses on culture, automation, measurement, and sharing, and it extends the solutions presented in 'The Phoenix Project' to cover information security and compliance. The second edition features new case studies and insights from renowned researcher Dr. Nicole Forsgren.