Catching Commits to Secure Infrastructure as Code

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!

Grab it

Explore secure infrastructure as code practices in this 45-minute conference talk from GOTO Chicago 2023. Learn how to implement policy as code for provisioning and configuring secure infrastructure. Dive into patterns, examples, and limitations of testing infrastructure security before deployment. Follow along with demos on static and dynamic analysis, catching commits, and system configuration. Gain insights on OWASP secure coding practices applied to infrastructure as code, and discover essential techniques for writing and testing secure infrastructure. Perfect for infra engineers and cloud explorers looking to enhance their security knowledge in the realm of infrastructure as code.

Syllabus

Intro
OWASP secure coding practices
What about infrastructure as code?
How do you write secure infrastructure as code?
Capture secure knowledge as tests
Demo
What commits to catch?
System configuration
Demo
There's more!
Demo
What's important?
Conclusion
Outro

Taught by

GOTO Conferences

Reviews

Start your review of Catching Commits to Secure Infrastructure as Code

Taught by

Application Security for Developers

Application Security for Developers and DevOps Professionals

CompTIA Linux+

Increase App Confidence Using CI - CD and Infrastructure as Code

Can Infrastructure as Code Apply to Bare Metal?

Infrastructure as Code with Terraform on Azure

Never Stop Learning.