Securing Production with Infrastructure as Code Analysis

Posted on in Presentations

Infrastructure as Code is getting mass adoption for software that is deployed to cloud environments. For product security this is both a risk and an opportunity. Product security teams want a consistent automated review of what is in an IaC. Once that is in place can we do more? Can we better secure infrastructure and give context to application vulnerabilities? This discussion will explore different ideas.

This session will follow Chatham House Rule to allow for free exchange of information and learning. We look forward to participants actively engaging in the discussion, and remind attendees that no comment attribution or recording of any sort should take place.

Please note you are only able to Schedule/Reserve one Birds of a Feather session.

This is a capacity-controlled session. If added to your schedule and your availability changes, please remove this session from your schedule to allow others to participate.

Chris Wysopal


Founder and CTO, Veracode

Product Security

application security cloud security DevSecOps orchestration & automation infrastructure security



Share With Your Community