the.com/netflix security automation
security so automated it fires back before a human finishes reading the alert.
means the practice of using self-service tools and automated response systems so security scales with engineering speed instead of hiring more reviewers.
from grew out of netflix's chaos engineering culture in the 2010s, where the same instinct that built chaos monkey to break things on purpose got pointed at security, spawning tools that auto-detect and auto-remediate instead of paging a human.
key toolrepokid auto-shrinks over-permissioned aws roles
philosophyfreedom and responsibility beats gatekeeping and tickets
scale problemthousands of microservices, too few security reviewers
foundationbuilt on aws, no perimeter to guard
for instance
repokid — netflix tool that auto-removes unused iam permissions since 2016
security monkey — chaos-monkey-family tool auditing aws config drift
fido — fully integrated defense operation, automates alert triage at netflix