Cloud Native Security Using Infrastructure as Code

DevOps practices and tools have helped increase organization’s ability to deliver reliable applications and services at rapid speed and scale while providing built in security controls and compliance. On October 19-20, I will be leading a session at DevNet Create for cybersecurity professionals interested in getting started with DevOps to automate and orchestrate their security configurations. You can register for DevNet Create here.

What you’ll learn in the DevNet Create session

In this session I will demonstrate how to get started deploying and maintaining security into cloud native environments using Infrastructure as Code (IaC).

Here’s a quick look at what we’ll do in this session:

1. Introduce the DevOps tools used to automate provisioning and management of security into public cloud.
2. Demonstrate using my local machine to create a repository in GitHub for version control of all my code.
3. Start building IaC on my local Integrated Development Environment (IDE) to provision a Virtual Private Cloud (VPC) and Elastic Kubernetes Services (EKS) cluster into Amazon Web Services (AWS) using Terraform.
4. Using Terraform, provision cloud native security controls such as a cloud native firewall, cloud workload protection, micro-segmentation, container runtime security, API security, and automated threat detection.
5. Demonstrate how to use Terraform and Ansible to deploy and manage security policy as code. We’ll configure cloud native security policy on all our provisioned controls and save it to GitHub.
6. Integrate the code with Jenkins, a Continuous Deployment (CI/CD) tool, to demonstrate how to manage the IaC using GitOps. We’ll create a pipeline job in Jenkins and check it into the GitHub repository.
7. Configure my Jenkinsfile, which is pipeline as code, to define the build, test, and deploy stages. I will commit and push the Jenkinsfile to the GitHub repository to trigger the pipeline job.
8. Demonstrate making changes to the security policy showing how the cloud native security controls are now integrated into the pipeline.

Join me at DevNet Create

I hope you’ll join me at DevNet Create for a deeper dive.

We’d love to hear what you think. Ask a question or leave a comment below.
And stay connected with Cisco DevNet on social!

Twitter @CiscoDevNet | Facebook | LinkedIn

Visit the new Developer Video Channel

Share