On-demand

45 min

Infrastructure as Code (IaC) makes deploying cloud or container configurations scalable and faster. If you are launching a microservice into a Kubernetes cluster, or even building an entire AWS virtual infrastructure, IaC can automate the deployment. By building repeatable templates you can also ensure that deployments happen exactly as you design, every time.

However, errors in infrastructure configuration are now regarded as the second biggest cause of data breaches. There are many ways to give adversaries an advantage through security misconfigurations. Overly permissive storage volumes, unauthenticated database access, or ports left open to the internet have all been a cause of compromise. The solution? Treat your infrastructure code the same as your application code. During your build process, use tools to scan for infrastructure misconfigurations. When you find them raise alerts or even break the build.

In this session, we discussed:

  • Common types of IaC misconfiguration
  • Demonstration of our free, open-source security tool, KICS, that you can build into your development pipeline to help protect your infrastructure from compromise.

 

This webinar was delivered by Ori Bendet, Director of Product Management at Checkmarx:

Ori is an experienced product leader with over 15 years of experience in various industries. Ori is the product management director leading Checkmarx's flagship product, CxSAST (Static Application Security Testing), a Gartner and Forrester market-leading solution, serving thousands of customers worldwide, securing the world one line of code at a time.

Ori Bendet - Checkmarx
Director of Product Management
Follow on LinkedIn