Case Study

Automating FedRAMP Security Compliance with Terraform

Published 8:00 AM UTC Feb 23, 2020

Learn how to build secure-by-design infrastructure as code in Terraform that meets the standards of FedRAMP regulations.

Security compliance surrounding cloud-based infrastructure and applications is a requirement for federal agencies or service providers who work with federal agencies. This security compliance requires organizations to utilize compliance frameworks like the Federal Risk and Authorization Management Program (FedRAMP) to validate their security posture in the cloud.

What You'll Learn

In this talk, we will look at how Terraform can be used to achieve robust security controls meeting the strenuous prescriptions of FedRAMP. You will learn how Terraform modules can be leveraged for cloud agility, such that infrastructure is described in terms of its architecture, rather than directly in terms of its resources. And you will also see how Terraform can enable organizations to meet FedRAMP's requirements with minimal friction by utilizing templatized, secure-by-design infrastructure as code.

Slides

You can find the slides for this presentation here.

More resources like this one

zero-trust
  • 12/13/2022
  • White Paper

A Field Guide to Zero Trust Security in the Public Sector

  • 9/14/2022
  • Article

Intelligence community article list: Multi-cloud success for the intelligence community

HashiStack 2021
  • 8/12/2022
  • White Paper

A Leadership Guide to Multi-Cloud Success for the Department of Defense

HashiStack 2021
  • 8/12/2022
  • White Paper

A Leadership Guide to Multi-Cloud Success for Federal Agencies

View all resources