Skip to main content
HashiTalks 2025 Learn about unique use cases, homelab setups, and best practices at scale at our 24-hour virtual knowledge sharing event. Register
Presentation

How Terraform and Behavior-Driven Development Help Shift Security Left

Learn how using terraform-compliance and BDD allows you to create an executable specification that can be understood, automated, and used to drive change across your organization.

Terraform is one of the great enablers of cloud adoption, but as Uncle Ben would tell us "With great power comes great responsibility." When it comes to infrastructure at scale you need to be able to exercise control without becoming a constraint.

What You'll Learn

In this session, Josh Armitage goes through how using terraform-compliance and behavior-driven development (BDD) allows you to create an executable specification that can be understood, automated, and used to drive change across your organization. Sentinel is also a good option here.

You'll'll also go through principles for enterprise-scale module design and how these fundamental building blocks make shift-left security a reality and transform security at even the biggest and oldest of companies.

You'll take away an appreciation for how BDD drives communication, understanding, and alignment, and how principled module design can drive positive behaviors and outcomes with minimal effort.

Speaker: Josh Armitage

More resources like this one

3/15/2023Presentation

Advanced Terraform techniques

2/3/2023Case Study

Automating Multi-Cloud, Multi-Region Vault for Teams and Landing Zones

2/1/2023Case Study

Should My Team Really Need to Know Terraform?

1/20/2023Case Study

Packaging security in Terraform modules