Download or read book Epic Failures in Devsecops written by Aubrey Stearn and published by . This book was released on 2018-11-06 with total page 178 pages. Available in PDF, EPUB and Kindle. Book excerpt: We learn more from failures than we do from successes. When something goes as expected, we use that process as a mental template for future projects. Success actually stunts the learning process because we think we have established a successful pattern, even after just one instance of success. It is a flawed confirmation that "This is the correct way to do it," which has a tendency to morph into "This is the only way to do it."Real learning comes through crisis.If something goes wrong, horribly wrong, we have to scramble, experiment, hack, scream and taze our way through the process. Our minds flail for new ideas, are more willing to experiment, are more open to external input when we're in crisis mode.The Genesis of an IdeaThat's where the idea for this book came from. When I was in Singapore for DevSecOps Days 2018. Edwin Kwan, Stefan Streichsbier and DJ Schleen were swapping war stories over a couple of beers.The conclusion of their evening of telling tales was the desire to find a way to get those stories out to the community. They spoke with me about putting together a team of authors who would tell their own stories in the hope of helping the DevSecOps Community understand that failure is an option.Yes. You read that right. Failure is an option.Failure is part of the process of making the cultural and technological transformation that needs to happen in order to keep innovating. It is part of the journey to DevSecOps. The stories presented here aren't a roadmap. What they do is acknowledge failure as a part of the knowledge base of the DevSecOps Community.The days of stand-alone security teams isolated from the real process of development are coming to an end. Paraphrasing Caroline Wong, "Security needs to be invited to the party, not perceived as a goon standing at the front door denying admission." With DevSecOps, security is now part of the team.After reading these stories, we hope you will realize you are not alone in your journey. Not only are you not alone, there are early adopters who have gone before you, not exactly "hacking a trail through the swamp,"but at least marking the booby traps, putting flags next to the quick-sandpits and holding up a 'Dragons be here' sign at perilous cave openings

Download or read book The CISO Evolution written by Matthew K. Sharp and published by John Wiley & Sons. This book was released on 2022-01-26 with total page 423 pages. Available in PDF, EPUB and Kindle. Book excerpt: Learn to effectively deliver business aligned cybersecurity outcomes In The CISO Evolution: Business Knowledge for Cybersecurity Executives, information security experts Matthew K. Sharp and Kyriakos “Rock” Lambros deliver an insightful and practical resource to help cybersecurity professionals develop the skills they need to effectively communicate with senior management and boards. They assert business aligned cybersecurity is crucial and demonstrate how business acumen is being put into action to deliver meaningful business outcomes. The authors use illustrative stories to show professionals how to establish an executive presence and avoid the most common pitfalls experienced by technology experts when speaking and presenting to executives. The book will show you how to: Inspire trust in senior business leaders by properly aligning and setting expectations around risk appetite and capital allocation Properly characterize the indispensable role of cybersecurity in your company’s overall strategic plan Acquire the necessary funding and resources for your company’s cybersecurity program and avoid the stress and anxiety that comes with underfunding Perfect for security and risk professionals, IT auditors, and risk managers looking for effective strategies to communicate cybersecurity concepts and ideas to business professionals without a background in technology. The CISO Evolution is also a must-read resource for business executives, managers, and leaders hoping to improve the quality of dialogue with their cybersecurity leaders.

Download or read book Managing Humans written by Michael Lopp and published by Apress. This book was released on 2007-10-18 with total page 198 pages. Available in PDF, EPUB and Kindle. Book excerpt: Managing Humans is a selection of the best essays from Michael Lopp's popular website Rands in Repose(www.randsinrepose.com). Lopp is one of the most sought-after IT managers in Silicon Valley, and draws on his experiences at Apple, Netscape, Symantec, and Borland. This book reveals a variety of different approaches for creating innovative, happy development teams. It covers handling conflict, managing wildly differing personality types, infusing innovation into insane product schedules, and figuring out how to build lasting and useful engineering culture. The essays are biting, hilarious, and always informative.

Download or read book Engineering DevOps written by Marc Hornbeek and published by Bookbaby. This book was released on 2019-12-06 with total page 400 pages. Available in PDF, EPUB and Kindle. Book excerpt: This book is an engineering reference manual that explains "How to do DevOps?". It is targeted to people and organizations that are "doing DevOps" but not satisfied with the results that they are getting. There are plenty of books that describe different aspects of DevOps and customer user stories, but up until now there has not been a book that frames DevOps as an engineering problem with a step-by-step engineering solution and a clear list of recommended engineering practices to guide implementors. The step-by-step engineering prescriptions can be followed by leaders and practitioners to understand, assess, define, implement, operationalize, and evolve DevOps for their organization. The book provides a unique collection of engineering practices and solutions for DevOps. By confining the scope of the content of the book to the level of engineering practices, the content is applicable to the widest possible range of implementations. This book was born out of the author's desire to help others do DevOps, combined with a burning personal frustration. The frustration comes from hearing leaders and practitioners say, "We think we are doing DevOps, but we are not getting the business results we had expected." Engineering DevOps describes a strategic approach, applies engineering implementation discipline, and focuses operational expertise to define and accomplish specific goals for each leg of an organization's unique DevOps journey. This book guides the reader through a journey from defining an engineering strategy for DevOps to implementing The Three Ways of DevOps maturity using engineering practices: The First Way (called "Continuous Flow") to The Second Way (called "Continuous Feedback") and finally The Third Way (called "Continuous Improvement"). This book is intended to be a guide that will continue to be relevant over time as your specific DevOps and DevOps more generally evolves.

Download or read book Securing DevOps written by Julien Vehent and published by Simon and Schuster. This book was released on 2018-08-20 with total page 642 pages. Available in PDF, EPUB and Kindle. Book excerpt: Summary Securing DevOps explores how the techniques of DevOps and security should be applied together to make cloud services safer. This introductory book reviews the latest practices used in securing web applications and their infrastructure and teaches you techniques to integrate security directly into your product. You'll also learn the core concepts of DevOps, such as continuous integration, continuous delivery, and infrastructure as a service. Purchase of the print book includes a free eBook in PDF, Kindle, and ePub formats from Manning Publications. About the Technology An application running in the cloud can benefit from incredible efficiencies, but they come with unique security threats too. A DevOps team's highest priority is understanding those risks and hardening the system against them. About the Book Securing DevOps teaches you the essential techniques to secure your cloud services. Using compelling case studies, it shows you how to build security into automated testing, continuous delivery, and other core DevOps processes. This experience-rich book is filled with mission-critical strategies to protect web applications against attacks, deter fraud attempts, and make your services safer when operating at scale. You'll also learn to identify, assess, and secure the unique vulnerabilities posed by cloud deployments and automation tools commonly used in modern infrastructures. What's inside An approach to continuous security Implementing test-driven security in DevOps Security techniques for cloud services Watching for fraud and responding to incidents Security testing and risk assessment About the Reader Readers should be comfortable with Linux and standard DevOps practices like CI, CD, and unit testing. About the Author Julien Vehent is a security architect and DevOps advocate. He leads the Firefox Operations Security team at Mozilla, and is responsible for the security of Firefox's high-traffic cloud services and public websites. Table of Contents Securing DevOps PART 1 - Case study: applying layers of security to a simple DevOps pipeline Building a barebones DevOps pipeline Security layer 1: protecting web applications Security layer 2: protecting cloud infrastructures Security layer 3: securing communications Security layer 4: securing the delivery pipeline PART 2 - Watching for anomalies and protecting services against attacks Collecting and storing logs Analyzing logs for fraud and attacks Detecting intrusions The Caribbean breach: a case study in incident response PART 3 - Maturing DevOps security Assessing risks Testing security Continuous security

Download or read book DevOps Tools for Java Developers written by Stephen Chin and published by "O'Reilly Media, Inc.". This book was released on 2022-04-15 with total page 363 pages. Available in PDF, EPUB and Kindle. Book excerpt: With the rise of DevOps, low-cost cloud computing, and container technologies, the way Java developers approach development today has changed dramatically. This practical guide helps you take advantage of microservices, serverless, and cloud native technologies using the latest DevOps techniques to simplify your build process and create hyperproductive teams. Stephen Chin, Melissa McKay, Ixchel Ruiz, and Baruch Sadogursky from JFrog help you evaluate an array of options. The list includes source control with Git, build declaration with Maven and Gradle, CI/CD with CircleCI, package management with Artifactory, containerization with Docker and Kubernetes, and much more. Whether you're building applications with Jakarta EE, Spring Boot, Dropwizard, MicroProfile, Micronaut, or Quarkus, this comprehensive guide has you covered. Explore software lifecycle best practices Use DevSecOps methodologies to facilitate software development and delivery Understand the business value of DevSecOps best practices Manage and secure software dependencies Develop and deploy applications using containers and cloud native technologies Manage and administrate source control repositories and development processes Use automation to set up and administer build pipelines Identify common deployment patterns and antipatterns Maintain and monitor software after deployment

Download or read book DevSecOps written by Glenn Wilson and published by . This book was released on 2020-12-10 with total page 280 pages. Available in PDF, EPUB and Kindle. Book excerpt: DevSecOps provides a clear path to building systems and protocols that promotes taking ownership of software security and supports the DevOps philosophy.

Download or read book The Site Reliability Workbook written by Betsy Beyer and published by "O'Reilly Media, Inc.". This book was released on 2018-07-25 with total page 505 pages. Available in PDF, EPUB and Kindle. Book excerpt: In 2016, Googleâ??s Site Reliability Engineering book ignited an industry discussion on what it means to run production services todayâ??and why reliability considerations are fundamental to service design. Now, Google engineers who worked on that bestseller introduce The Site Reliability Workbook, a hands-on companion that uses concrete examples to show you how to put SRE principles and practices to work in your environment. This new workbook not only combines practical examples from Googleâ??s experiences, but also provides case studies from Googleâ??s Cloud Platform customers who underwent this journey. Evernote, The Home Depot, The New York Times, and other companies outline hard-won experiences of what worked for them and what didnâ??t. Dive into this workbook and learn how to flesh out your own SRE practice, no matter what size your company is. Youâ??ll learn: How to run reliable services in environments you donâ??t completely controlâ??like cloud Practical applications of how to create, monitor, and run your services via Service Level Objectives How to convert existing ops teams to SREâ??including how to dig out of operational overload Methods for starting SRE from either greenfield or brownfield

Download or read book Achieving DevOps written by Dave Harrison and published by Apress. This book was released on 2019-05-22 with total page 515 pages. Available in PDF, EPUB and Kindle. Book excerpt: Ben is stuck. A development lead with a strong vision for how the intersection of development and operations at his office can be improved, he can’t help but feel overwhelmed and discouraged by common problems such as slow turnaround time, rushed and ineffective handover documentation, mounting technical debt, and a lagging QA process. What steps should Ben take to build the momentum needed to create positive changes within his company? In this unique business novel by Dave Harrison and Knox Lively, two DevOps professionals with years of diverse experience in the industry, you follow Ben as he solves work frustrations in order to adopt Agile, DevOps, and microservices architectures for his organization. Achieving DevOps addresses the “Now what?” moment many DevOps professionals face on their journey. The story provides you with the knowledge you need to navigate the internal political waters, build management support, show measurable results, and bring DevOps successfully into your organization. Come away with practical lessons and timeless business concepts. You’ll know how to effect change in a company from the bottom up, gain support, and instill a pattern of progressively building on success. Experience Ben’s progress vicariously in Achieving DevOps and bridge the gap between inspiration and the implementation of your own DevOps practices. Who This Book Is For Those serving as change agents who are working to influence and move their organizations toward a DevOps approach to software development and deployment: those working to effect change from the bottom up such as development leads, QA leads, project managers, and individual developers; and IT directors, CTOs, and others at the top of an organization who are being asked to lend their support toward DevOps implementation efforts

Download or read book Driving Digital written by Isaac Sacolick and published by AMACOM. This book was released on 2017-08-24 with total page 317 pages. Available in PDF, EPUB and Kindle. Book excerpt: Every organization makes plans for updating products, technologies, and business processes. But that’s not enough anymore for the twenty-first-century company. The race is now on for everyone to become a digital enterprise. For those individuals who have been charged with leading their company’s technology-driven change, the pressure is intense while the correct path forward unclear. Help has arrived! In Driving Digital, author Isaac Sacolick shares the lessons he’s learned over the years as he has successfully spearheaded multiple transformations and helped shape digital-business best practices. Readers no longer have to blindly trek through the mine field of their company’s digital transformation. In this thoroughly researched one-stop manual, learn how to: • Formulate a digital strategy • Transform business and IT practices • Align development and operations • Drive culture change • Bolster digital talent • Capture and track ROI • Develop innovative digital practices • Pilot emerging technologies • And more! Your company cannot avoid the digital disruption heading its way. The choice is yours: Will this mean the beginning of the end for your business, or will your digital practices be what catapults you into next-level success?

Download or read book Secure by Design written by Daniel Sawano and published by Simon and Schuster. This book was released on 2019-09-03 with total page 659 pages. Available in PDF, EPUB and Kindle. Book excerpt: Summary Secure by Design teaches developers how to use design to drive security in software development. This book is full of patterns, best practices, and mindsets that you can directly apply to your real world development. You'll also learn to spot weaknesses in legacy code and how to address them. About the technology Security should be the natural outcome of your development process. As applications increase in complexity, it becomes more important to bake security-mindedness into every step. The secure-by-design approach teaches best practices to implement essential software features using design as the primary driver for security. About the book Secure by Design teaches you principles and best practices for writing highly secure software. At the code level, you’ll discover security-promoting constructs like safe error handling, secure validation, and domain primitives. You’ll also master security-centric techniques you can apply throughout your build-test-deploy pipeline, including the unique concerns of modern microservices and cloud-native designs. What's inside Secure-by-design concepts Spotting hidden security problems Secure code constructs Assessing security by identifying common design flaws Securing legacy and microservices architectures About the reader Readers should have some experience in designing applications in Java, C#, .NET, or a similar language. About the author Dan Bergh Johnsson, Daniel Deogun, and Daniel Sawano are acclaimed speakers who often present at international conferences on topics of high-quality development, as well as security and design.

Download or read book Hands On Security in DevOps written by Tony Hsiang-Chih Hsu and published by Packt Publishing Ltd. This book was released on 2018-07-30 with total page 341 pages. Available in PDF, EPUB and Kindle. Book excerpt: Protect your organization's security at all levels by introducing the latest strategies for securing DevOps Key Features Integrate security at each layer of the DevOps pipeline Discover security practices to protect your cloud services by detecting fraud and intrusion Explore solutions to infrastructure security using DevOps principles Book Description DevOps has provided speed and quality benefits with continuous development and deployment methods, but it does not guarantee the security of an entire organization. Hands-On Security in DevOps shows you how to adopt DevOps techniques to continuously improve your organization’s security at every level, rather than just focusing on protecting your infrastructure. This guide combines DevOps and security to help you to protect cloud services, and teaches you how to use techniques to integrate security directly in your product. You will learn how to implement security at every layer, such as for the web application, cloud infrastructure, communication, and the delivery pipeline layers. With the help of practical examples, you’ll explore the core security aspects, such as blocking attacks, fraud detection, cloud forensics, and incident response. In the concluding chapters, you will cover topics on extending DevOps security, such as risk assessment, threat modeling, and continuous security. By the end of this book, you will be well-versed in implementing security in all layers of your organization and be confident in monitoring and blocking attacks throughout your cloud services. What you will learn Understand DevSecOps culture and organization Learn security requirements, management, and metrics Secure your architecture design by looking at threat modeling, coding tools and practices Handle most common security issues and explore black and white-box testing tools and practices Work with security monitoring toolkits and online fraud detection rules Explore GDPR and PII handling case studies to understand the DevSecOps lifecycle Who this book is for Hands-On Security in DevOps is for system administrators, security consultants, and DevOps engineers who want to secure their entire organization. Basic understanding of Cloud computing, automation frameworks, and programming is necessary.

Download or read book Agile Software Requirements written by Dean Leffingwell and published by Addison-Wesley Professional. This book was released on 2010-12-27 with total page 977 pages. Available in PDF, EPUB and Kindle. Book excerpt: “We need better approaches to understanding and managing software requirements, and Dean provides them in this book. He draws ideas from three very useful intellectual pools: classical management practices, Agile methods, and lean product development. By combining the strengths of these three approaches, he has produced something that works better than any one in isolation.” –From the Foreword by Don Reinertsen, President of Reinertsen & Associates; author of Managing the Design Factory; and leading expert on rapid product development Effective requirements discovery and analysis is a critical best practice for serious application development. Until now, however, requirements and Agile methods have rarely coexisted peacefully. For many enterprises considering Agile approaches, the absence of effective and scalable Agile requirements processes has been a showstopper for Agile adoption. In Agile Software Requirements, Dean Leffingwell shows exactly how to create effective requirements in Agile environments. Part I presents the “big picture” of Agile requirements in the enterprise, and describes an overall process model for Agile requirements at the project team, program, and portfolio levels Part II describes a simple and lightweight, yet comprehensive model that Agile project teams can use to manage requirements Part III shows how to develop Agile requirements for complex systems that require the cooperation of multiple teams Part IV guides enterprises in developing Agile requirements for ever-larger “systems of systems,” application suites, and product portfolios This book will help you leverage the benefits of Agile without sacrificing the value of effective requirements discovery and analysis. You’ll find proven solutions you can apply right now–whether you’re a software developer or tester, executive, project/program manager, architect, or team leader.

Download or read book Microservices Security in Action written by Wajjakkara Kankanamge Anthony Nuwan Dias and published by Simon and Schuster. This book was released on 2020-07-11 with total page 614 pages. Available in PDF, EPUB and Kindle. Book excerpt: ”A complete guide to the challenges and solutions in securing microservices architectures.” —Massimo Siani, FinDynamic Key Features Secure microservices infrastructure and code Monitoring, access control, and microservice-to-microservice communications Deploy securely using Kubernetes, Docker, and the Istio service mesh. Hands-on examples and exercises using Java and Spring Boot Purchase of the print book includes a free eBook in PDF, Kindle, and ePub formats from Manning Publications. Microservices Security in Action teaches you how to address microservices-specific security challenges throughout the system. This practical guide includes plentiful hands-on exercises using industry-leading open-source tools and examples using Java and Spring Boot. About The Book Design and implement security into your microservices from the start. Microservices Security in Action teaches you to assess and address security challenges at every level of a Microservices application, from APIs to infrastructure. You’ll find effective solutions to common security problems, including throttling and monitoring, access control at the API gateway, and microservice-to-microservice communication. Detailed Java code samples, exercises, and real-world business use cases ensure you can put what you’ve learned into action immediately. What You Will Learn Microservice security concepts Edge services with an API gateway Deployments with Docker, Kubernetes, and Istio Security testing at the code level Communications with HTTP, gRPC, and Kafka This Book Is Written For For experienced microservices developers with intermediate Java skills. About The Author Prabath Siriwardena is the vice president of security architecture at WSO2. Nuwan Dias is the director of API architecture at WSO2. They have designed secure systems for many Fortune 500 companies. Table of Contents PART 1 OVERVIEW 1 Microservices security landscape 2 First steps in securing microservices PART 2 EDGE SECURITY 3 Securing north/south traffic with an API gateway 4 Accessing a secured microservice via a single-page application 5 Engaging throttling, monitoring, and access control PART 3 SERVICE-TO-SERVICE COMMUNICATIONS 6 Securing east/west traffic with certificates 7 Securing east/west traffic with JWT 8 Securing east/west traffic over gRPC 9 Securing reactive microservices PART 4 SECURE DEPLOYMENT 10 Conquering container security with Docker 11 Securing microservices on Kubernetes 12 Securing microservices with Istio service mesh PART 5 SECURE DEVELOPMENT 13 Secure coding practices and automation

Download or read book Agile Project Management For Dummies written by Mark C. Layton and published by John Wiley & Sons. This book was released on 2017-09-05 with total page 432 pages. Available in PDF, EPUB and Kindle. Book excerpt: Flex your project management muscle Agile project management is a fast and flexible approach to managing all projects, not just software development. By learning the principles and techniques in this book, you'll be able to create a product roadmap, schedule projects, and prepare for product launches with the ease of Agile software developers. You'll discover how to manage scope, time, and cost, as well as team dynamics, quality, and risk of every project. As mobile and web technologies continue to evolve rapidly, there is added pressure to develop and implement software projects in weeks instead of months—and Agile Project Management For Dummies can help you do just that. Providing a simple, step-by-step guide to Agile project management approaches, tools, and techniques, it shows product and project managers how to complete and implement projects more quickly than ever. Complete projects in weeks instead of months Reduce risk and leverage core benefits for projects Turn Agile theory into practice for all industries Effectively create an Agile environment Get ready to grasp and apply Agile principles for faster, more accurate development.

Download or read book CCNP and CCIE Security Core SCOR 350 701 Official Cert Guide written by Omar Santos and published by Cisco Press. This book was released on 2023-11-09 with total page 1521 pages. Available in PDF, EPUB and Kindle. Book excerpt: Trust the best-selling Official Cert Guide series from Cisco Press to help you learn, prepare, and practice for the CCNP and CCIE Security Core SCOR 350-701 exam. Well regarded for its level of detail, study plans, assessment features, and challenging review questions and exercises, CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide, Second Edition helps you master the concepts and techniques that ensure your exam success and is the only self-study resource approved by Cisco. Expert author Omar Santos shares preparation hints and test-taking tips, helping you identify areas of weakness and improve both your conceptual knowledge and hands-on skills. This complete study package includes A test-preparation routine proven to help you pass the exam Do I Know This Already? quizzes, which let you decide how much time you need to spend on each section Exam Topic lists that make referencing easy Chapter-ending exercises, which help you drill on key concepts you must know thoroughly The powerful Pearson Test Prep Practice Test software, complete with hundreds of well-reviewed, exam-realistic questions, customization options, and detailed performance reports A final preparation chapter, which guides you through tools and resources to help you craft your review and test-taking strategies Study plan suggestions and templates to help you organize and optimize your study time Content Update Program: This fully updated second edition includes the latest topics and additional information covering changes to the latest CCNP and CCIE Security Core SCOR 350-701 exam. Visit ciscopress.com/newcerts for information on annual digital updates for this book that align to Cisco exam blueprint version changes. This official study guide helps you master all the topics on the CCNP and CCIE Security Core SCOR 350-701 exam, including Network security Cloud security Content security Endpoint protection and detection Secure network access Visibility and enforcement Companion Website: The companion website contains more than 200 unique practice exam questions, practice exercises, and a study planner Pearson Test Prep online system requirements: Browsers: Chrome version 73 and above, Safari version 12 and above, Microsoft Edge 44 and above. Devices: Desktop and laptop computers, tablets running Android v8.0 and above or iPadOS v13 and above, smartphones running Android v8.0 and above or iOS v13 and above with a minimum screen size of 4.7”. Internet access required. Pearson Test Prep offline system requirements: Windows 11, Windows 10, Windows 8.1; Microsoft .NET Framework 4.5 Client; Pentium-class 1 GHz processor (or equivalent); 512 MB RAM; 650 MB disk space plus 50 MB for each downloaded practice exam; access to the Internet to register and download exam databases Also available from Cisco Press for CCNP Advanced Routing study is the CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide Premium Edition eBook and Practice Test, Second Edition This digital-only certification preparation product combines an eBook with enhanced Pearson Test Prep Practice Test. This integrated learning package Enables you to focus on individual topic areas or take complete, timed exams Includes direct links from each question to detailed tutorials to help you understand the concepts behind the questions Provides unique sets of exam-realistic practice questions Tracks your performance and provides feedback on a module-by-module basis, laying out a complete assessment of your knowledge to help you focus your study where it is needed most

Download or read book Epic Failures Volume 2 written by Eliza May Austin and published by . This book was released on 2020-01-25 with total page 136 pages. Available in PDF, EPUB and Kindle. Book excerpt: Authors: Chris Riley, Dr. Cherry Vu, Eliza-May Austin, Marc Cluet, Jaclyn Damiano, Rob England, Jasmine James, Sladjana Jovanovic, Ryan Lockard, Larry Maccherone, Bill McArthur Another year, another nine failures. That's just the way it goes when you ask to hear stories about Epic Failures. Everybody's got one. Last year, in 2019, when we published the first Epic Failures book, we had no idea whether anyone would be interested. Thousands of downloads later, with literally thousands of printed books being handed out at conferences, we now know the truth: the community loves failure. At least hearing about other people's failures. Volume Two builds on the momentum created by Volume One. The quality of this set of stories is outstanding, starting with "Question Everything" by the DevSecOps Contrarian herself, Eliza May Austin. Larry Maccherone, "SHIFT Left. NOT S#!T Left", runs through a list of six ways to fail on a project, while "Making Everyone Visible In Tech" by Jaclyn Damiano tells a personal story of life transformation through tech. Sladjana Jovanovic and Bill McArthur from TD Bank take on the Herculean task of breaking down silos to create a collaborative environment in "Collaboration vs Silos". "What Not to do When Rolling out DevSecOps and Other Learnings" comes from Jasmine James in her work as an IT Manager at Delta Airlines. Marc Cluet takes on cultural transformation, "Cultural Approaches to Transformations: Staying Safe and Healthy", while Ryan Lockard focuses on "The Seven Deadly Sins of DevSecOps". Chris Riley asks us the meme inducing question, "Did you try turning it off and on?" when examining simple bugs that have debilitating outcomes, and we finish with IT Sceptic Rob England and Dr Cherry Vu encouraging us to "Kill the Restructure". One of the motivations for publishing a book like this is for you, the reader, to be able to self-identify with the stories. It is our hope that you will see yourself somewhere within these pages and know you did not screw things up on your own, you are not unique when it comes to hosing a project, and sometimes you can sit back and laugh after it's all over. It's important to be able to step back and get perspective when something goes wrong, and even better to let others know what happened.I'm proud to give these authors the chance to tell their stories and hope it encourages you to let others know about your Epic Failures. Who knows? You might end up telling your story in Volume 3 of Epic Failures in DevSecOps. Best wishes on your next productive failure. Mark Miller, January 2020 Founder and Editor, Epic Failures in DevSecOps Co-founder, All Day DevOps