Infrastructure-as-Code Security: Why, What, and How
Offered By: Pluralsight
Course Description
Overview
In this talk, you'll learn about common IaC risks and best practices for securing infrastructure at scale using policy-as-code in both in build-time and run-time.
Planning, provisioning, and changing infrastructure are vital to rapid cloud application development. Incorporating infrastructure-as-code into software development promotes transparency and helps prevent bad configurations upstream. It also presents another layer of risk. In this talk, you'll learn about common IaC risks and best practices for securing infrastructure at scale using policy-as-code in both in build-time and run-time.
Planning, provisioning, and changing infrastructure are vital to rapid cloud application development. Incorporating infrastructure-as-code into software development promotes transparency and helps prevent bad configurations upstream. It also presents another layer of risk. In this talk, you'll learn about common IaC risks and best practices for securing infrastructure at scale using policy-as-code in both in build-time and run-time.
Taught by
DevSecCon
Related Courses
Managing Resources with Azure PolicyLinkedIn Learning Enforcing Standards on Terraform with HashiCorp Sentinel
HashiCorp via YouTube Building Modern Access-Control for Cloud Applications with Or Weis - SnykLIVE Recording
Snyk via YouTube Infrastructure as Code - Is It Really?
NDC Conferences via YouTube Temporal - Security As Code - The New Model Of Achieving Security At Scale
OWASP Foundation via YouTube