Enjoy fast, free delivery, exclusive deals, and award-winning movies & TV shows with Prime
Try Prime
and start saving today with fast, free delivery
Amazon Prime includes:
Fast, FREE Delivery is available to Prime members. To join, select "Try Amazon Prime and start saving today with Fast, FREE Delivery" below the Add to Cart button.
Amazon Prime members enjoy:- Cardmembers earn 5% Back at Amazon.com with a Prime Credit Card.
- Unlimited Free Two-Day Delivery
- Streaming of thousands of movies and TV shows with limited ads on Prime Video.
- A Kindle book to borrow for free each month - with no due dates
- Listen to over 2 million songs and hundreds of playlists
- Unlimited photo storage with anywhere access
Important: Your credit card will NOT be charged when you start your free trial or if you cancel during the trial period. If you're happy with Amazon Prime, do nothing. At the end of the free trial, your membership will automatically upgrade to a monthly membership.
-20% $17.67$17.67
Ships from: Amazon.com Sold by: Amazon.com
$12.98$12.98
$3.98 delivery May 20 - 21
Ships from: glenthebookseller Sold by: glenthebookseller
Download the free Kindle app and start reading Kindle books instantly on your smartphone, tablet, or computer - no Kindle device required.
Read instantly on your browser with Kindle for Web.
Using your mobile phone camera - scan the code below and download the Kindle app.
OK
Audible sample Sample
Investments Unlimited: A Novel About DevOps, Security, Audit Compliance, and Thriving in the Digital Age Paperback – September 13, 2022
Purchase options and add-ons
In the vein of the bestselling The Phoenix Project and The Unicorn Project, Investments Unlimited radically rethinks how organizations can handle the audit, compliance, and security of their software systems―even in highly regulated industries. By introducing concepts, tools, and ideas to reimagine governance, Investments Unlimited catalyzes a more humane way to enable high-velocity software delivery that is inherently more secure.
Investments Unlimited, Inc. has accomplished what many other firms in their industry have failed to do: they have successfully navigated the transition from legacy ways of working to the digital frontier. With the help of DevOps practices, Investments Unlimited delivers value to its customers with speed and agility. But now, all that work is about to fall apart. Sure, DevOps helped the company adapt, but it also failed them.
While features moved through the organization swiftly, their governance process became inundated with friction, frustration, and failure. And now, their inability to deliver what they promise has led regulators to slap them with an MRIA (matter requiring immediate attention), the final warning before cease-and-desist letters and fire sales.
With the future of Investments Unlimited on the line, a cross-functional team of executives and engineers has just months to develop a modern governance process that satisfies regulators but doesn't slow down the company's ability to compete in the market. It is up to this ragtag team to navigate trials, tribulations, site failures, and supply chain attacks, all on their path to save the company from disaster.
- Print length160 pages
- LanguageEnglish
- PublisherIT Revolution Press
- Publication dateSeptember 13, 2022
- Dimensions6.06 x 0.32 x 8.73 inches
- ISBN-101950508536
- ISBN-13978-1950508532
The Amazon Book Review
Book recommendations, author interviews, editors' picks, and more. Read it now.
Frequently bought together
Similar items that may deliver to you quickly
Editorial Reviews
Review
“Investments Unlimited builds upon years of DevSecOps literature while firmly anchoring the principles into regulated entities like financial services. The technology fable will keep you engaged with relatable stories and conversations, and practical knowledge for you to implement at your own firm and inside your team.” -- Dr. Brandon R. Williams, VP IAM Strategy, Ping Identity
“Finally we have a book that can be leveraged by everyone in your organization involved in meeting security, audit, and compliance requirements. You'll be able to apply this practical guidance immediately, and I really appreciate the inclusion of all of the functions and roles required to be successful. It's a great reminder that we are all in this together!” -- Courtney Kissler, SVP Customer & Retail Technology at Starbucks
“Today, software developers are just as much security engineers, whether they know it or not. In a unique and compelling way, Investments Unlimited illustrates how to safely automate security testing, audit, and compliance to help organizations move faster, safer. It's a fast and fun story that sheds light on a much-needed subject: the importance of bringing security, audit, and compliance out of the shadows and into the everyday life of a developer. Security, audit, and compliance are everyone's job every day. Investments Unlimited joyfully brings to light that these essential functions are enabled by DevOps.” -- Jim Manico, Founder and Secure Coding Educator, Manicode Security
“This book helps overcome the fear and frustration many technology organizations have with audit and compliance. The story of Investments Unlimited builds shared understanding across functions and roles in an engaging way and shows us the practical steps to make more speed, stability, and compliance a reality in our own organizations.” -- Jeff Gallimore, CTIO, Excella
“There are countless books documenting the techniques and tooling of DevOps. But rather than a technical how-to, Investments Unlimited abstracts much of the nitty-gritty to tell the story of what a DevSecOps transformation might look like for the people and teams of an enterprise organization.” -- Maya Senen, Sr. SRE
“This book should be required reading for every software product manager and engineer. Learn how to apply security, compliance, audit, and automated testing capabilities in your organization by reading a fictional story that does a great job relating the challenges faced daily.” -- Thomas Underhill, JD, Director of Trust Engineering Programs, VMware
About the Author
Helen Beal is a DevOps and Ways of Working coach, Chief Ambassador at DevOps Institute, and ambassador for the Continuous Delivery Foundation. She is the Chair of the Value Stream Management Consortium and provides strategic advisory services to DevOps industry leaders. She is also an analyst at Techstrong Research, hosts the Day-to-Day DevOps webinar series for BrightTalk and the Value Stream Evolution series on TechStrong TV. She currently lives in the UK.
Bill Bensing builds things that build things. He is a skilled leader and architect of software, people, teams, and companies. Bill is an expert at making innovation a wholly inclusive process. His love of DevOps comes from a background in logistics and operations management. Automated Governance is a topic Bill finds very interesting. He believes a lack of good governance is the single biggest issue preventing breakthrough value. Bill will tell you, “Good strategy and good governance are the grease and guide rails for success.” He lives in the Tampa Bay, FL, area.
Jason Cox is a champion of DevOps practices, promoting new technologies and better ways of working. He enjoys helping organizations deliver more value, better, faster, safer and happier. He is an inspirational speaker who loves people and delights in amplifying their abilities with technology. Jason frequently speaks at conferences, contributes to open source and writes on technical and leadership topics. He currently leads several SRE teams and resides in Los Angeles with his wife and their children.
Michael Edenzon is a senior IT leader and engineer that modernizes and disrupts the technical landscape for highly regulated organizations. Michael provides technical design, decisioning, and solutioning across complex verticals and leverages continuous learning practices to drive organizational change. He is a fervent advocate for the developer experience and believes that enablement-focused automation is the key to building compliant software at scale.
Topo Pal is a thought leader, keynote speaker, evangelist in the areas of DevSecOps, Continuous Delivery, Cloud Computing, Open Source Adoption and Digital Transformation. He is a hands-on developer and Open Source contributor. Topo has been leading and contributing to industry initiatives around automated governance in DevOps practices. Topo resides in Richmond, VA, with his wife and two children.
Caleb Queern helps CIOs and CISOs reduce risk across the software development life cycle so they can innovate quickly and win in the market. He lives in Austin, Texas with his wife, Marian, and son, Joseph.
John Rzeszotarski has led organizations with a focus on digital, payments, security, and development. His primary passion is solving complex business and IT problems through technology, fast flow, and building learning organizations. He loves coding new things and driving change in insanely regulated environments. He lives in
Pittsburgh, PA, with his family.
Andres Vega helps engineering organizations securely build large-scale, distributed software leveraging novel approaches to reduce the compliance toil associated with the area. He is recognized in the open-source community as a maintainer, contributor, and technical leader focused on the improvement of ecosystem security. Outside of his profession, he is a family guy and an avid outdoors person. You are sure to find him adventuring with his family all over the trails of the San Francisco Bay Area in his best attempt not to get mauled to death by hungry mountain lions.
John Willis is an author and Senior Director of the Global Transformation Office at Red Hat. John is considered one of the founders of the DevOps movement. He lives in Acworth, GA.
Product details
- Publisher : IT Revolution Press (September 13, 2022)
- Language : English
- Paperback : 160 pages
- ISBN-10 : 1950508536
- ISBN-13 : 978-1950508532
- Item Weight : 8 ounces
- Dimensions : 6.06 x 0.32 x 8.73 inches
- Best Sellers Rank: #400,181 in Books (See Top 100 in Books)
- #273 in Production & Operations
- #316 in Computers & Technology Industry
- #3,762 in Business Management (Books)
- Customer Reviews:
About the authors
Jason Cox is a champion of DevOps practices, promoting new technologies and better ways of working. He enjoys helping organizations deliver more value, better, faster, safer and happier. He is an inspirational speaker who loves people and loves amplifying their abilities with technology. Jason frequently speaks at conferences, contributes to open source and writes on technical and leadership topics. He currently leads several SRE teams and resides in Los Angeles with his wife and their children.
Michael Edenzon is an engineer and IT leader that modernizes and disrupts the technical landscape for highly-regulated organizations. He is a fervent advocate for the developer and believes that enablement-focused automation is the key to building compliant software at scale.
Tapabrata (Topo) Pal is a thought leader, keynote speaker, and evangelist in the areas of DevSecOps, Continuous Delivery, Cloud Computing, Open Source Adoption and Digital Transformation. He is a hands-on developer and Open Source contributor. Topo has been leading and contributing to industry initiatives around automated governance in DevOps practices.
Whether it is software, people, engineering teams, technology organization, or companies, I build things that build things. Engaging with others to solve problems is my passion. The thrill of struggling, learning, then succeeding is what gets me up in the morning.
My experience is fighting to be part of the innovation economy. Driving inclusivity into the innovation process is my expertise.
The journey started with the less-traditional route. No computer science degree, nor an engineering degree. It began with a slow computer, Notepad, and many Teach Yourself in 24 Hour books. It has become an opportunity to up-level those around me.
John Rzeszotarski is a Technology Executive that has come from a development and infrastructure background. He has worked for some of the largest banks in the US and has focused his writing on improving the processes, culture, and positions of Enterprise IT.
Discover more of the author’s books, see similar authors, read author blogs and more
Customer reviews
Customer Reviews, including Product Star Ratings help customers to learn more about the product and decide whether it is the right product for them.
To calculate the overall star rating and percentage breakdown by star, we don’t use a simple average. Instead, our system considers things like how recent a review is and if the reviewer bought the item on Amazon. It also analyzed reviews to verify trustworthiness.
Learn more how customers reviews work on Amazon-
Top reviews
Top reviews from the United States
There was a problem filtering reviews right now. Please try again later.
The concepts are presented in a story in Investments Unlimited, a fictional financial institution that received notice from bank regulators concerning their unsatisfactory audit and compliance practices. With an interesting and relatable cast of characters we get to see what the team did in order to fix their process.
Although not required, I recommend reading The Phoenix Project and The Unicorn Project before this one, as it feels like a “spinoff” and doesn’t go that deep into DevOps as the previous two books did.
I'm a big fan of this book. A colleague of mine at work suggested it (along with the DevOps Handbook, and the Phoenix Project... books also written by some of the authors of this book). I am in the technology risk space and am a bit old school so terms like main branch, pull requests, SBOMs, and SCA's are new to me.
This is a novel, a story, it's not a dry, boring book on technology. It's a story about a bank that received an MRA (if you don't know what that is, they explain it) and how the risk, security, compliance, and technology teams worked together to resolve. They didn't always see eye to eye, and the environment wasn't always easy for them to resolve but they made it happen.
The authors don't make you feel ashamed to not know what you don't know. They help you embrace the fact that if you don't know, someone else does and working together, a company can achieve a highly dynamic, agile, continuous development and integration technology culture.
Reviewed in the United States on December 1, 2022
I'm a big fan of this book. A colleague of mine at work suggested it (along with the DevOps Handbook, and the Phoenix Project... books also written by some of the authors of this book). I am in the technology risk space and am a bit old school so terms like main branch, pull requests, SBOMs, and SCA's are new to me.
This is a novel, a story, it's not a dry, boring book on technology. It's a story about a bank that received an MRA (if you don't know what that is, they explain it) and how the risk, security, compliance, and technology teams worked together to resolve. They didn't always see eye to eye, and the environment wasn't always easy for them to resolve but they made it happen.
The authors don't make you feel ashamed to not know what you don't know. They help you embrace the fact that if you don't know, someone else does and working together, a company can achieve a highly dynamic, agile, continuous development and integration technology culture.
Top reviews from other countries
The links to approval resources throughout give great grounds for additional deeper diving.
Gegenstand des Romans ist die Standardisierung und Erweiterung der seit Jahren vorhandenen DevOps Pipeline. Von der es aber zwei Versionen gibt, wie die Protagonisten zu ihrem eigenen Erstaunen herausfinden. Der bestehende CI/CD Softwareentwicklungsprozess wird in eine DevSecOps Pipeline verwandelt indem Security, sowie automatisch Compliance Checks Bestandteil des Prozess werden. Und nicht erst am Ende als QA, da dies nur die Fehlerrate in Produktion in die Höhe treibt. Dieses shift-left Prinzip ist älter als das Wort DevOps und geht auf Edward W. Deming zurück, einem der Gründerväter der TQM (total quality management) Bewegung, der die produzierende Industrie das Toyota Production System verdankt: Und das Ziel, Qualität in das Produkt einzubauen, sie also zu einem Feature des Produkts zu machen, und Qualitätssicherung nicht als non-functional requirement irgendwo am Ende des Prozess zu sehen.
Compliance wird somit auf dieselbe Weise in das Softwareprodukt eingebaut wie Security. Um Compliance Policies automatisiert zu testen wird auf entsprechende Open Source Tools verwiesen, die von den Protagonisten zur Lösung ihres Problems eingesetzt werden.
Absoluter Lesetipp. Insbesondere wenn man in der Banking Industrie oder bei einem Auditor oder bei einer Regulierungsbehörde wie zB der BaFin arbeitet.