IaC Templates Are The Source Of Many Cloud Infrastructure Weaknesses – Expert Comments

In response to reports that show a high percentage of IaC template misconfigurations in cloud deployments that leave them vulnerable to attack, an expert from Cerberus Sentinel offers perspective.

Experts Comments

February 10, 2020
Bill Santos
President and COO
Cerberus Cybersecurity
While many consider infrastructure code as somehow less critical than application code, this report highlights that nothing could be further from the truth. In reality, the same culture and discipline (code reviews, automated testing, etc) must be used on infrastructure code as is used on application code, for very similar reasons: failure to appreciate the implications and act accordingly creates a real security risk to both the infrastructure and the applications that infrastructure is.....Read More
While many consider infrastructure code as somehow less critical than application code, this report highlights that nothing could be further from the truth. In reality, the same culture and discipline (code reviews, automated testing, etc) must be used on infrastructure code as is used on application code, for very similar reasons: failure to appreciate the implications and act accordingly creates a real security risk to both the infrastructure and the applications that infrastructure is supporting.  Read Less
What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.