The security function in most development environments is broken. With engineers focused on features and DevOps allowing them to move rapidly and self-provision around their own hurdles, it’s impossible for reactive, traditional security tools to keep up with an ever changing production environment. Even with a security engineer within the team, the chance of catching every bad-default in Terraform, an accidental “False” that needed to be true in ARM, or hidden * in a wide-open access policy is next to impossible with the ever growing suite of cloud services.
In this talk, we’ll show how, (with very little effort) to shift security left into code, enabling automated scanning and highlighting of security risks at build time, with helpful remediation advice for all. Knowing is the first step to improving, and automation makes knowing easy. You bring your CI pipeline, we’ll show you how.
Like this episode? Please like the video, subscribe to the channel and hit the notification bell so that you know as soon as there’s new content!.
Listen in on
YouTube – https://www.youtube.com/c/CloudWithChris
CloudWithChris.com – https://www.cloudwithchris.com
Google Podcasts – https://podcasts.google.com/feed/aHR0cHM6Ly93d3cuY2xvdWR3aXRoY2hyaXMuY29tL2VwaXNvZGUvaW5kZXgueG1s?sa=X&ved=0CAMQ4aUDahcKEwiwsr2N1ePtAhUAAAAAHQAAAAAQBA
Apple Podcasts – https://podcasts.apple.com/gb/podcast/cloud-with-chris/id1499633784
PocketCasts – https://pca.st/u5t985sn
RSS – https://www.cloudwithchris.com/episode/index.xml
Spotify – https://open.spotify.com/show/3oBrdKm5grzl58GBiV0j2y
Stitcher – https://www.stitcher.com/s?fid=507667&refid=stpr
Want to be a guest? https://sessionize.com/CloudWithChris
Have a topic suggestion? Create a GitHub issue at https://github.com/CloudWithChris/cloudwithchris.com/issues