Writing

Brought 28 people together to write the first book about OpenShift security capabilities. Over two weeks, authored 300+ pages, 60,000 words, and sent to publication!

The book identified approaches that aid in the triaging of security trade-offs and risk, policy enforcement, reporting, and the validation of system configuration. Cloud infrastructure and security engineering roles are central to establishing and preserving security postures. It is the book’s intent to support these roles by providing the proper mixture of conceptual, organizational, and technical guidance, thereby increasing the security vigilance and effectiveness of those with such responsibilities.

• Keith Basil, a coauthor and colead of the project, published a retrospective of the book sprint.
• BookSprints Limited, the facilitator for the book sprint, also wrote a blog about the process.
• Photos are available on flickr

Factoring all moving components of OpenStack, the rapid release cycles, and the sheer complexity of large deployments, OpenStack security information was decentralized and obsoleted every one or two releases (case in point: Nova networking vs Quantum Neutron). To aid the community and provide practical hardening guidance, we (the co-authors) aspired to create a book that would assist OpenStack administrators in hardening their installations.

• Today, the book lives on as an open source project. Latest versions are accessible at https://docs.openstack.org/security-guide/
• Creation of the book received media attention by ComputerWeekly.com.