The Phoenix Project: A Novel About IT, DevOps, and Helping Your Business Win

It might not be a cybersecurity book, but it is definitely a must-read one. It feels a bit outdated (it’s 2022 when writing this) but nevertheless it provider an inside view of how IT operates, how has evolved over the past years and how leadership thinks. Above all it pushes security people to consider the “other side of the story” that of IT professionals and developers trying to do their daily job and confronted with myriads of issues including security.


image


Alice and Bob Learn Application Security

If you are new to AppSec this is the book to start with. Great introduction to the basics, how to kick-start your AppSec program, what tools you can use and what it means to be in Application Security. Even if you are a few years into your AppSec journey you can use this book as a reference and an anchor. The author, Tanya Janca, is a prominent security professional with years of experience working in companies like Microsoft and strong involvement with the OWASP community.


image


This Is How They Tell Me the World Ends: The Cyberweapons Arms Race

This is a New York Times bestseller book written by Nicole Perlroth. One of the absolutely best books that tells the hsitory of cybersecurity, zero-day exploits, state sponsored and “freelance” hackers. You must read this book.


image


Sandworm: A New Era of Cyberwar and the Hunt for the Kremlin’s Most Dangerous Hackers

How did Russia state sponsored hackers launch a cyber-offensive against Ukraine? What were the consequences of the attack? A deep dive into NotPetya and what may have been the first cyber war.


image


Little Brother from Cory Doctorow

If you like novels with a strong sense of cybersecurity this is an excellent book. It describes the endeavors of young teenagers to confront government agencies as their social freedoms and privacy are being striped off with the excuse of an emergency situation.


image