Planning, provisioning, and changing infrastructure are becoming vital to rapid cloud application development. Incorporating infrastructure-as-code into software development promotes transparency and helps prevent bad configurations upstream, but it also presents another layer of risk. In this talk, we’ll cover some common IaC risks and best practices for securing infrastructure at scale using policy-as-code in both in build-time and run-time.

Barak Schoster

Barak Schoster is CTO and …