Securing Your Terraform Deployment On AWS Via Gitlab-Ci And Vault – Part 3

How do you secure your Terraform deployment on AWS using Gitlab-CI and the Vault? In previous articles, we've looked at the problems of CI/CD deployments on the cloud, and then at how to solve these problems by using Vault to generate dynamic secrets and authenticate the Gitlab-CI pipeline. In this third and final article, we will discus...

Lire la suite

Securing Your Terraform Deployment On AWS Via Gitlab-Ci And Vault – Part 2

As we saw in the previous article, it is difficult to authenticate a pipeline or even a Gitlab-CI job to allow secure access to our secrets in least privilege mode. HashiCorp Vault allows us to address this need in a uniform and cloud agnostic way. Let's look at our workflow again, this time adding Vault : Initially, Vault allo...

Lire la suite

How to make a successful Cloud security transformation : key success factors and pitfalls

Let's be honest: not all cloud projects succeed on the first try. From the initial target to what actually goes into production several months later, there is sometimes a gap. We offer you here our feedback on a large-scale Cloud transformation project: some topics worked, others didn't. Our objective here will be to highlight the key su...

Lire la suite