Sign up for our newsletter!
Stay informed on the latest DevOps news

DevOps.com

Tag: policy as code

infrastructure, Terraform, IaC immutable infrastructure Pulumi GitOps

Risk-Based Review for Infrastructure as Code Pull Requests 

| | automated review systems, blast radius analysis, change approval workflow, change management, CI/CD governance, cloud infrastructure, Cloud Security, deployment risk, deployment safety, devops, devsecops, Engineering Governance, engineering productivity, gitops, IaC review, infrastructure as code, infrastructure auditing, infrastructure automation, infrastructure change tracking, infrastructure compliance, infrastructure controls, infrastructure delivery, Infrastructure Governance, infrastructure observability, infrastructure reliability, infrastructure risk scoring, infrastructure security, operational risk management, platform engineering, platform operations, platform team workflows, policy as code, production changes, production deployments, pull request review, reviewer fatigue, reviewer workflows, risk assessment, risk-based review, security review automation
Not every infrastructure pull request deserves the same review path. A tag change in a development account and a network-policy change in production should not create identical reviewer load. When every change ...
cloud costs, devops workflows

FinOps Isn’t Slowing You Down — It’s Fixing Your Pipeline 

| | CI/CD, cloud cost optimization, Cloudability, devops, FinOps, IaC governance, Infrastructure Cost, policy as code, shift left, Terraform
Stop firefighting cloud costs weeks after deployment. Learn how to "shift cost left" by integrating cost estimates and policy-as-code directly into your DevOps workflows using tools like Terraform and GitHub ...
DevGovOps, JFrog, AI, Governance, CRA, compliance, continuous compliance, validated, devops, liability, software, compliance Checkly Palo Alto Networks Checkov

Security as Code is Becoming the New Baseline: Continuous Compliance in DevOps 

| | admission control Kubernetes, automated audit logs, CIS benchmarks automation, Cloud-native governance, continuous compliance, devsecops automation, DORA compliance DevOps, EU Cyber Resilience Act security, infrastructure as code security, platform engineering security, policy as code, Rego policy enforcement, Security as Code 2026, security feedback loops, SOC 2 continuous monitoring
There was a time when compliance meant a quarterly ritual. Someone from security would walk over with a spreadsheet, ask a few questions, tick a few boxes and disappear until the next audit cycle ...
Open source, OpenTDF, RISE open source DevOps governance

Why Investing in DevOps Platforms Pays off for Businesses 

| | cost of downtime 2026, Detutu Media DevOps, developer autonomy, DevOps platform market 2028, DevSecOps market valuation, DORA Report 2025 AI, GitOps reliability, golden paths DevOps, hybrid cloud adoption, IDP ROI, Internal Developer Platforms 2026, multi-cloud strategy 2024, Platform Engineering growth, platform governance cloud costs, policy as code, SBOM compliance, Segun Onibalusi, SLSA standards, trust paradox software, value stream management
Explore why 80% of organizations are adopting Internal Developer Platforms (IDPs) by 2026. From reducing setup time by 40% to mitigating $9,000-per-minute downtime costs, discover the undeniable ROI of platform engineering, "golden ...
Git, security, code-to-cloud security, organizations, GPU cloud automation Dell Microsoft Azure AWS repatriation cloud Cloud-Native IoT, cloud security

Policy as Code for Cost Control, Not Just Compliance

| | cloud cost management, FinOps, infrastructure as code, kubernetes, platform engineering, policy as code
Policy as code can do more than enforce compliance. Learn how platform teams use guardrails, tagging and sizing policies to prevent cloud cost waste early ...
ADM Palo Alto Networks Mendix CI/CD dependency AppSmith impact mapping

How OPA Changed Our Go-No-Go Forever

| | application release management, CI/CD, devsecops, OPA, policy as code
Learn how Open Policy Agent (OPA) transformed go/no-go releases from subjective meetings into automated, auditable, policy-driven decisions embedded directly in the CI/CD pipeline ...
CI/CD, gearset, future low-code CI/CD release metrics CircleCI Future of DevOps and CI/CD - Predict 2021

GitOps Implementation at Enterprise Scale — Moving Beyond Traditional CI/CD 

| | ArgoCD, change traceability, CI/CD migration, CI/CD reliability, cloud native delivery, configuration drift, declarative infrastructure, deployment automation, deployment rollback strategy, DevOps at scale, devsecops, dora metrics, gitops, GitOps adoption, GitOps security, infrastructure as code, Kubernetes continuous delivery, platform engineering, policy as code, pull-based deployments
Traditional CI/CD pipelines hit scaling limits. Learn how GitOps improves deployment reliability, security, and DORA metrics—and what it takes to migrate successfully ...
cloud desktop Cloud provider, cloud management

What is OPA (Open Policy Agent)?

| | Authorization, OPA, Open Policy Agent, open source, policy as code, RBAC
Open Policy Agent (OPA) is a versatile policy engine designed to handle policy enforcement across cloud infrastructures. It enables users to define and apply policies consistently across a variety of systems, helping ...
GitOps in the Wild: Scaling Continuous Delivery in Hybrid Cloud Environments

GitOps in the Wild: Scaling Continuous Delivery in Hybrid Cloud Environments

| | continuous delivery, devops automation, drift detection, GitOps architecture, GitOps at scale, GitOps best practices, GitOps case study, GitOps challenges, GitOps governance, GitOps observability, GitOps security, hybrid cloud GitOps, hybrid cloud operations, infrastructure as code, Kubernetes delivery, multi-cloud DevOps, Open Policy Agent, policy as code
A deep dive into scaling GitOps for hybrid and multi-cloud environments, exploring architecture, governance, security, observability and real-world enterprise practices ...
Common IaC Security Issues and How to Fix Them

Common IaC Security Issues and How to Fix Them

| | audit logging, automated compliance, CI/CD pipeline security, cloud infrastructure, cloud misconfiguration, cloud security incidents, CloudFormation, configuration drift, devsecops, drift detection, hardcoded secrets, IaC automation, IaC best practices, IaC governance, IaC security, IaC vulnerabilities, infrastructure as code, least privilege access, policy as code, secrets management
Learn the top five Infrastructure as Code (IaC) security vulnerabilities, their fixes, and best practices to prevent misconfigurations, drifts, and breaches ...
PagerDuty, Harness, Qwiet, HashiCorp, Harness, Kong, API, sentry, Wiz, Veracode, ASPM,

env zero Revamps Infrastructure Automation Platform for AI Era

| | AI agents, cloud compliance, Cloud Governance Platform, Cloud Security, CloudFormation, devops automation, IaC, infrastructure as code, infrastructure automation, kubernetes, MCP, Model Context Protocol, policy as code, Static Code Analyzer Agent, Terragrunt
Env Zero (formerly env0) has revamped its Cloud Governance Platform with AI and MCP support, including a new Static Code Analyzer Agent to streamline IaC governance, compliance, and security across tools like ...
build, developers, authorization, teams, DevOps, loop, trends,

Simplifying Authorization at Scale: The Importance of DevOps Workflows with Flexible, Scalable and Secure Access Control 

| | access control, Authorization-as-a-Service, cloud-native security, devops, microservices, policy as code, scalable authorization
DevOps has transformed how developers build, deploy, and manage infrastructure and applications, making automation, scalability and rapid iteration core to modern development workflows.  While much of the software delivery process has evolved, authorization ...
Show More