From the course: DevOps Foundations: Infrastructure as Code
Join today to access over 24,900 courses taught by industry experts.
Security and compliance as code
From the course: DevOps Foundations: Infrastructure as Code
Security and compliance as code
Infrastructure as Code changes how we build our infrastructure, but it also changes how we break things. With Infrastructure as Code, a single bad pattern can spread through your infra code like wildfire. The good news is that with IAC, security and compliance can be evaluated at the code level, and not just by scanning production infrastructure after the fact. Let's discuss creating security policies as code, so we get safer delivery that doesn't slow teams down. One thing relevant to security is context. For example, a public S3 storage bucket in a sandbox environment is probably not a big deal. But a public bucket in production containing sensitive data is a very big issue. Now, how can you tell the difference? Infrastructure as code is where much of that context is explicitly spelled out. The code itself tells us the intended environment, data classification, and exposure. Tools that understand these…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
-
-
-
(Locked)
What is infrastructure as code?3m 50s
-
(Locked)
Continuous integration for infrastructure4m 1s
-
(Locked)
Testing infrastructure2m 31s
-
(Locked)
Works on my machine4m 20s
-
(Locked)
You write it, you run it3m 25s
-
(Locked)
Automate all the things2m 59s
-
(Locked)
CI for my IaC5m 8s
-
(Locked)
The GitOps model3m 48s
-
(Locked)
Security and compliance as code6m 35s
-
(Locked)
Using AI to create your IaC9m 58s
-
(Locked)
-