In this talk we'll discuss the challenges and approaches for achieving a Secure by Default posture on a cloud provider. We'll walk you through some of the work we've built to make this journey easier, including PCI blueprints for deployment of secure workloads and Chef InSpec profiles for verification and generation of a compliance score. Finally, we'll show you how to wrap all the pieces together in a CI/CD build pipeline.
Security & Compliance Specialist, Google
Infrastructure Cloud Consultant, Google