Practice of defining organizational policies, compliance rules, and governance as executable code that can be automatically enforced. Like having security rules and compliance requirements written as programs that check themselves automatically.
Security teams use policy as code to automatically prevent deployment of resources that don't meet security requirements, like blocking public S3 buckets.
Practice of defining organizational policies, compliance rules, and governance as executable code that can be automatically enforced. Like having security rules and compliance requirements written as programs that check themselves automatically.
Security teams use policy as code to automatically prevent deployment of resources that don't meet security requirements, like blocking public S3 buckets.
Related concepts include Infrastructure as Code, Compliance, Governance. Understanding these connections helps build a comprehensive knowledge of cloud computing concepts.