Articles By: Bridgecrew
DevSecGuide to Infrastructure as Code
This guide outlines the challenges of leveraging DevSecOps to secure the cloud and highlights how infrastructure as code (IaC) makes it all possible.
DevSecGuide to Kubernetes
As the de facto container orchestrator, Kubernetes has undeniable benefits when it comes to building performant and scalable applications. Its complexity and flexibility can create security challenges, but when approached with DevSecOps, can provide an opportunity to automate security from the start.
Software Supply Chain Security Checklist: 7 Rules for Protecting Your Components and Pipelines From Attack
Software supply chains are core to building and delivering cloud-native applications. They contain software components like open source packages and infrastructure as code (IaC) templates, as well as underlying delivery pipelines such as version control systems (VCS) and continuous integration / continuous delivery (CI/CD) pipelines.
Six Power Rules for Integrating Cloud Security and GitOps, A Checklist
When infrastructure as code (IaC) is paired with GitOps, DevOps teams can apply the same guidelines used to manage application code to infrastructure. The result is faster and more frequent deployment, better scalability, and increased predictability. GitOps also makes it easy to embed security scanning and guardrails throughout the entire development and delivery process.
How People.AI Reduced Cloud Configuration Issues by 97% | Case Study
People.ai relies heavily on Terraform and AWS for its cloud infrastructure. With over 10,000 resources in their infrastructure, gaining visibility and reducing security risks was proving to be difficult and time-consuming. As they constantly evolved their configured resources and scaled their cloud infrastructure footprint, they wanted to stay on top of best practices in keeping their environments secure.
Secure Your Infrastructure From Code to Cloud | Bridgecrew Overview
Bridgecrew empowers teams to secure their infrastructure wherever it is using a developer-first approach. It helps enterprises to fix issues in code, automate processes, and streamline cloud security into developer workflows.
Putting the Sec in DevSecOps | Talk Recording
Planning, provisioning, and changing infrastructure are vital to rapid cloud application development. Incorporating infrastructure-as-code into software development promotes transparency and immutability and helps prevent bad configurations upstream.
Cloud DevSecOps With Bridgecrew and Terraform | Hands-on Workshop Recording
Gain hands-on experience with the help of experts from Bridgecrew and Hashicorp! From scanning infrastructure as code (IaC) for security misconfigurations to implementing automated DevSecOps workflows, this workshop will provide a hands-on experience to automate your cloud security.
