This 34-minute webinar from HashiCorp explores how to effectively manage infrastructure vulnerabilities through preventative risk management in hybrid cloud environments. Learn about the SEC's increasing focus on cybersecurity risk, challenges in asset management, and the complexities introduced by hybrid-cloud adoption. Discover why vulnerable images create significant security risks and why ad-hoc approaches to vulnerability management fail. Explore Infrastructure Lifecycle Management as a solution, with detailed explanations of how integrating HCP Packer and HCP Terraform creates a robust framework for image management, including features like image revocation, inherited revocation, and continuous image validation. The presentation includes a demonstration of an automated vulnerability and patch management workflow that helps organizations maintain security while streamlining operations across complex infrastructure environments.
Address Infrastructure Vulnerabilities with Preventative Risk Management
Overview
Syllabus
0:00 - Intro
2:12 - SEC’s focus on cybersecurity risk
2:50 - Asset management challenges
3:59 - The shift to hybrid-cloud
6:26 - Vulnerability and patch management
7:20 - Vulnerable images pose risk
8:28 - Ad-hoc approaches are insufficient
12:28 - Infrastructure Lifecycle Management
14:19 - HCP Packer + HCP Terraform
15:57 - Image Revocation
17:37 - Inherited revocation
18:34 - Continuous image validation
19:23 - Automated VPM workflow
19:48 - Demo
Taught by
HashiCorp
