A growing challenge for development and security operation teams (DevSecOps) as they move workloads to cloud infrastructures is how to ensure that functions in the cloud adhere to their agency’s compliance and security policies. Cloud infrastructures are flexible and offer opportunities for settings to be changed or misconfigured, opening more access points for data breaches, system downtime, and costly compliant violations. […]