Skip to main content
HashiTalks 2025 Learn about unique use cases, homelab setups, and best practices at scale at our 24-hour virtual knowledge sharing event. Register
Recorded Webinar

Guardrails Using AWS Organizations and Terraform

Hear Andrew Krug, Technical Evangelist at Datadog, discuss guardrails using AWS Organizations and HashiCorp Terraform.

AWS Organizations is relatively new, having been released in 2017. The evolution from simply being consolidated billing to security controls seemed like a natural progression. In 2021 Organizations is one of the best tools in your arsenal to protect accounts. In this talk we’ll explore the pros and cons of using a feature in AWS Organizations called SCPs ( Security Control Policies ).

SCPs are the most restrictive and broadest net we can cast with regard to the usage of APIs in the AWS control plane. We’ll look to understand how SCPs work, the tooling to configure them, and finally why Terraform is the best option we have to craft these policies. Attendees will leave with a firm understanding of the trade offs as well as a set of recommendations on why they should consider employing this model.

»Key Takeaways:

- What is AWS Organizations and Multi Account

- How can you use Terraform to create guardrails

- Understand why Terraform is an excellent approach to creating SCPs

For more sessions from our Zero Trust Security Roadshow, click here.

  • Andrew Krug
    Andrew KrugTechnical Evangelist

More resources like this one

2/3/2023Case Study

Automating Multi-Cloud, Multi-Region Vault for Teams and Landing Zones

1/5/2023Case Study

How Discover Manages 2000+ Terraform Enterprise Workspaces

12/22/2022Case Study

Architecting Geo-Distributed Mobile Edge Applications with Consul

zero-trust
12/13/2022White Paper

A Field Guide to Zero Trust Security in the Public Sector