Read the abstract ➤ https://www.conf42.com/DevSecOps_2023_Joshua_Arvin_Lat_iac_security_best_practices Other sessions at this event ➤ https://www.conf42.com/devsecops2023 Join Discord ➤ https://discord.gg/DnyHgrC7jC Chapters 0:00 intro 1:43 preamble 1:54 about joshua 2:31 let's begin 6:22 tag resources properly 7:05 avoid insecure defaults and regurarly check for announcements in cloud platforms 8:51 secret management & permission management 10:17 why? 12:43 track and manage changes using version control tools 15:05 use pipelines to analyze security vulnerabilities automatically 15:30 be careful when managing resources with iac in pipelines! 16:40 poisoned pipeline execution 17:10 protect specific resources from accidental deletion or modification 18:02 the end