As the summer sun beckons and the pace of work slows, it’s the perfect time to catch up on your professional reading. For those in the cloud security field, staying current is not just beneficial—it’s essential. The lazy days of summer offer a unique opportunity to dive into books that can expand your knowledge, challenge your thinking, and ultimately make you better at safeguarding cloud environments.
This year, we’ve reached out to a diverse group of Orca Security experts—from CISOs to DevOps engineers—to curate a summer reading list that’s both informative and engaging. Whether you’re lounging by the pool, relaxing on a beach, or enjoying a quiet evening on the porch, these books will help you stay ahead in the ever-evolving world of cloud security. So grab your favorite cold beverage, find a comfortable spot, and dive into these expert-recommended reads.
Let’s explore the must-read books that our experts suggest for your summer reading list:
1. “Security Chaos Engineering” by Kelly Shortridge
This book is recommended for CISOs by Andy Ellis, Orca Security Advisory CISO. It applies chaos engineering principles to security, making it an essential read for anyone working in complex cloud environments. While not exclusively focused on cloud security, the concepts are highly applicable to the intricacies of cloud infrastructures.
2. “The Cybersecurity Playbook” by Allison Cerra
Raul Zayat, Orca Security CISO, recommends this book for professionals at all organizational levels. Subtitled “How Every Leader and Employee Can Contribute to a Culture of Security,” this comprehensive guide is perfect for organizations looking to build a robust cybersecurity culture. It provides practical strategies for fostering a security-first mindset across all levels of a company, from executives to frontline employees.
3. “Red Team Blues” by Cory Doctorow
For cloud security practitioners seeking an engaging read, Neil Carpenter, field CTO, suggests this novel. It provides a rare, accurate representation of cybersecurity and associated disciplines in media. Carpenter points out that the protagonist, Marty Hench, feels authentic to real-world incident responders. Beyond entertainment, the book delves into critical issues surrounding cryptocurrency and cybersecurity, making it both an enjoyable and informative summer read.
4. “We Are Bellingcat” by Eliot Higgins
Another recommendation from Neil Carpenter, this non-fiction work serves as an excellent introduction to Open Source Intelligence (OSINT). Carpenter highlights its relevance, stating that OSINT is an emerging field all security practitioners should be familiar with. This book introduces the emerging field of OSINT through the lens of Bellingcat, a pioneering investigative journalism collective. It combines an overview of OSINT techniques with accounts of Bellingcat’s notable investigations, offering security professionals valuable insights into this increasingly important discipline.
5. “Cloud Native DevOps with Kubernetes” by John Arundel and Justin Domingus
Ryan Huynh, Director of DevOps at Orca Security, puts this book forward as essential reading for those working at the intersection of DevOps and cloud security. It provides a comprehensive guide to implementing DevOps practices in cloud-native environments, with a strong focus on Kubernetes. Huynh notes that the book covers critical topics such as security, monitoring, and continuous deployment, making it particularly valuable for professionals looking to enhance their cloud security knowledge in modern environments.
6. “Cloud Security: A Comprehensive Guide to Secure Cloud Computing” by Ronald L. Krutz and Russell Dean Vines
Closing out our list is a recommendation from Joshua Gourgues, Senior IT Systems Engineer at Orca Security. This book offers a thorough overview of cloud security concepts, technologies, and practices. Gourgues highlights its coverage of critical topics such as data security, access control, and compliance in cloud environments. He notes that the authors’ practical approach and inclusion of real-world examples make it particularly useful for IT professionals working with cloud technologies and seeking to deepen their understanding of cloud security.
As cloud technologies continue to evolve, staying informed about security best practices is crucial. This curated list of books offers diverse perspectives on cloud security, from technical guides to engaging narratives. Whether you’re a CISO, a DevOps engineer, or an IT professional, there’s something here to enhance your understanding of cloud security.
Happy reading, and stay secure!
