ENT318: Enterprise Fundamentals: Use AWS to Secure Your DevOps Pipeline Like a Bank Would

Continuous delivery can be challenging, especially for enterprises that deal with strict compliance requirements, like those in the financial services sector. AWS and Stelligent frequently work together with many large financial services enterprises to build solutions that enable customers to run their business faster and more safely on AWS. Together, we help customers ensure the security of the source code used to trigger builds, insert strict business controls at run time, and continuously inspect running infrastructure to ensure compliance. In this session, we share highly effective techniques that you can incorporate into your continuous delivery system to provide bank-level controls and security, and faster deployments. We explore a strong encryption pattern for handling build artifacts in a continuous delivery pipeline, a simple process for inspecting AWS CloudFormation templates to ensure that business rules are in compliance before a template makes AWS API calls, and a runtime inspector that uses AWS Lambda and AWS Config rules to ensure that running infrastructure is always in compliance.