Using OPA for Continuous Compliance with Cloud Infrastructure Policy-as-Code

Logo
Presented by

Josh Stella, Co-founder and CTO, Fugue

About this talk

Cloud security is a software engineering problem, not a security analysis one. The engineers that build and maintain cloud infrastructure need policy-as-code tools to ensure cloud security and compliance. Open Policy Agent is an open source standard for policy-as-code that’s ideal for cloud infrastructure. In this talk, Josh Stella, cofounder and CTO at Fugue, will walk through how OPA works and how cloud engineering teams can leverage it for their use cases, including validating infrastructure-as-code and integrating cloud security into CI/CD pipelines. • How OPA and the Rego policy language work for a variety of cloud security use cases • How developers can check Terraform against policy with Regula, an open source tool that uses OPA • How to use OPA with CI/CD tools to integrate cloud infrastructure security into automated delivery pipelines

Related topics:

More from this channel

Upcoming talks (7)
On-demand talks (877)
Subscribers (54818)
CSA CloudBytes was launched as a webinar series to help us educate the industry on all matters related to the cloud. Our channel is designed to inform our audience about trending topics, new technologies, and latest research. Learn more at cloudsecurityalliance.org. Join the Cloud Security Alliance on LinkedIn and follow us on twitter: @cloudsa