IaC Templates Are The Source Of Many Cloud Infrastructure Weaknesses – Expert Comments

In response to reports that show a high percentage of IaC template misconfigurations in cloud deployments that leave them vulnerable to attack, an expert from Cerberus Sentinel offers perspective.

Subscribe
Notify of
guest
1 Expert Comment
Newest
Oldest Most Voted
Inline Feedbacks
View all comments
Bill Santos
Bill Santos , President and COO
InfoSec Expert
February 10, 2020 10:25 am

While many consider infrastructure code as somehow less critical than application code, this report highlights that nothing could be further from the truth. In reality, the same culture and discipline (code reviews, automated testing, etc) must be used on infrastructure code as is used on application code, for very similar reasons: failure to appreciate the implications and act accordingly creates a real security risk to both the infrastructure and the applications that infrastructure is supporting.

Last edited 2 years ago by Bill Santos
1
0
Would love your thoughts, please comment.x
()
x