Cloud Security Podcast by Google EP138 Terraform for Security Teams: How to Use IaC to Secure the Cloud
14 snips
Sep 11, 2023 Guest Rosemary Wang, Developer Advocate at HashiCorp, discusses using Terraform for security automation, applying security best practices, and the relationship between Terraform and policy as code. Tips for getting started and recommendations for enhancing security journey with Terraform are also shared.
AI Snips
Chapters
Transcript
Episode notes
Intro to Terraform
- Terraform is an infrastructure-as-code tool for building, changing, and versioning infrastructure.
- It helps standardize configurations and automate security aspects of cloud infrastructure.
Terraform for Network Engineers
- Rosemary Wong explains Terraform to someone with a networking background by comparing it to configuring network switches.
- Instead of manual commands, Terraform automates the process and ensures the correct order of operations.
Securing Terraform
- Secure Terraform by modularizing configurations, building best practices into reusable modules.
- Use pre and post-conditions and security testing, including policy as code.