Demo

Building a Secure AWS Golden Image Pipeline with Packer, Vault and Terraform

Get an end-to-end demo of a Terraform, Vault, and Packer-based CI/CD golden workflow for building secure and compliant OS images. Triggering Ansible and OpenSCAP for OS image compliance and post-install steps.

Relying on post-provisioning updates and customization can only take you so far. Baking in security fixes, compliance and configuration as part of your OS image eliminates the attack window while your image is insecure (post provisioning), speeds up the end-to-end provisioning process, and can even be used to setup an 'immutable' design.

What You'll Learn

Mihai Criveti and Elif Samedin will provide an end-to-end demo of a Terraform, Vault, and Packer-based CI/CD workflow for building secure and compliant OS images. Triggering Ansible and OpenSCAP for OS image compliance and post-install steps.

More resources like this one