Amazon Web Services (AWS) has introduced declarative policies to help DevSecOps teams streamline compliance by ensuring that desired configurations for AWS services are enforced without alteration.
Mark Ryland emphasized that this capability allows IT teams to declare their cybersecurity intent, minimizing the chances of misconfigurations as applications undergo changes.
Declarative policies in AWS can now block public access to VPCs across accounts and are operational across several services like EC2 and EBS.
While it remains uncertain who will manage these policies in organizations, the trend shows more cybersecurity teams are hiring software engineers for this task.
Collection
[
|
...
]