IaC in the GitOps framework
1. IaC in the GitOps framework
Security plays a very important role in the automation of software releases, infrastructure, and policy. This video introduces a new framework known as GitOps. GitOps is a framework that applies version control, collaboration, compliance, and CI/CD best practices to automate cloud infrastructure. GitOps uses Git, an open-source version control system, to store configuration files. The first component of GitOps is that it uses infrastructure as code, or IaC, as a core process for automation. Developers store the infrastructure as source code in a Git repository. This repository serves as the single source of truth for all configuration files. This gives all involved stakeholders improved version control. In Git, the original source code is called the main branch, also known as the trunk branch. Think of a tree. As a cloud security professional, when you need to update the IaC, you make a pull or merge request. When you make a pull request, you're incorporating the committed files from a branch into the main trunk. Initiating a pull request includes a description of the request, details about the CI/CD pipeline, comments about the code, and the intended commits. A commit is the specific change made to a file. GitOps relies on CI/CD methodology to deliver the code commits. GitOps uses continuous integration as a method for submitting pull requests. Continuous delivery integrates security and IaC requirements throughout the software development process. GitOps supports the DevSecOps security mindset of shifting left. Cloud security analysts can incorporate security best practices, like vulnerability scanning and IaC compliance checks, from the beginning of development and throughout the CI/CD pipeline. There are several GitOps benefits. The first benefit is that GitOps improves efficiency and visibility throughout development. This benefit comes about when an organization can use a single tool to manage infrastructure and the application development lifecycle. Both infrastructure and application management are rooted in the same version control system. A second benefit is that this central management of application and infrastructure allows developers to easily manage services like container instances, microservices, and other infrastructure parts. GitOps principles make it an ideal model for organizations using container services. You learned how GitOps is a valuable tool for automation, version control, and configuration management. Recall how GitOps works like a tree where you can create branches from the trunk to help streamline operations. This understanding of GitOps will help prepare you for the varied methodologies you’ll encounter and use as a cloud security professional.2. Let's practice!
Create Your Free Account
or
By continuing, you accept our Terms of Use, our Privacy Policy and that your data is stored in the USA.