Fugue: IaC Security with OPA and Regula: Custom Rules

Presented by

Curtis Myzie, VP of Engineering, Fugue

About this talk

In this session, Curtis Myzie, Fugue's VP of Engineering, will walk through how to develop custom policies using Rego, the language used by Regula and Open Policy Agent (OPA). You’ll walk away from this session with a clear picture of: -Using Rego to build custom policies for checking Terraform templates -Developing multi-resource policies for advanced, contextual cloud security -Using your custom Regula policies to check Terraform HCL and plan files You can also use your same Regula policies to check your running cloud environment using Fugue.

Related topics:

More from this channel

Upcoming talks (8)
On-demand talks (18)
Subscribers (755)
Cloud computing has turned security on its head. The cloud attack surface is the configuration of thousands of interrelated resources — and it’s all changing constantly. Ensuring continuous cloud security and compliance requires a deep understanding how cloud works and the nature of misconfiguration. Why it happens, how hackers exploit it, and how to prevent it. At Fugue, we’re committed to helping cloud professionals master the concepts they need to ensure the security of their cloud infrastructure. Our Cloud Security Masterclass series is led by Fugue CTO and co-founder Josh Stella, who has extensive experience with cloud security and working with national security customers as a Principal Solutions Architect with AWS. He takes us on technical deep dives into critical cloud infrastructure security concepts. Fugue helps cloud teams transform how they do cloud security at every stage of the software development lifecycle — so they can move faster in the cloud without breaking the rules that put data at risk.