Section 3:DevSecOps and AIOps

This part includes chapters that cover infrastructure security automation using various AWS solutions. It also covers DevSecOps implementation using AWS native services such as CodeGuru Reviewer, ECR Scan, as well as using open source tools for code advisory, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Runtime Application Security Protection (RASP). It also shows how to use AWS DevOps Guru, which is an AIOps service to find anomalies in applications deployed on EKS clusters and serverless applications.

This section contains the following chapters:

• Chapter 7, Infrastructure Security Automation Using Security Hub and Systems Manager
• Chapter 8, DevSecOps Using AWS Native Services
• Chapter 9, DevSecOps Pipeline with AWS Services and Tools Popular Industry-Wide
• Chapter 10, AIOps with Amazon DevOps Guru and Systems Manager OpsCenter