Cloud misconfiguration detection- Runtime vs Static analysis

Planning, provisioning, and changing infrastructure are becoming vital to rapid cloud application development. Incorporating infrastructure-as-code into software development promotes transparency and immutability and helps prevent bad configurations upstream.In this session, we cover a simple method to write, test, and maintain infrastructure at scale using policy-as-code both in build and runtime. We will go over open source projects that analyze Terraform code and AWS accounts and compare the two approaches (detection vs static analysis) using the following projects:

Barak Schoster

Barak Schoster

Barak Schoster is CTO and Co-founder atBridgecrew, working from Israel Tel Aviv, Helping teams secure cloud infrastructure. Often contributing to open source projects includingCheckov,Prowler, and others. He has previously worked for RSA focused on cybersecurity machine learning and big data architecture as well as at Fortscale and IDF tech unit. When not writing code or talking about it, Barak loves to spend time at the beach and or after his kids at the park

Find Barak on twitter

Related Posts

Privacy Preferences
When you visit our website, it may store information through your browser from specific services, usually in form of cookies. Here you can change your privacy preferences. Please note that blocking some types of cookies may impact your experience on our website and the services we offer.