Nikit Swaraj Accelerating Devsecops On Aws [work] Jun 2026

The build server (AWS CodeBuild) is where acceleration meets hardening.

| Function | AWS Service | Why it accelerates DevSecOps | | :--- | :--- | :--- | | | CodeCommit / GitHub (via CodeStar) | Native integration with event-driven security triggers. | | Build | CodeBuild | Supports custom runtimes for any security scanner (Trivy, Terrascan). | | Artifact Storage | ECR (Elastic Container Registry) | ECR Scan on Push is instant and free. | | Threat Detection | GuardDuty | Agentless; detects API abuse instantly. | | Runtime Protection | WAF + Shield Advanced | Protects ALB/CloudFront; uses ML to block bots. | | Compliance | Audit Manager | Automates evidence collection for SOC2/ISO. | nikit swaraj accelerating devsecops on aws

Speed is safety. Automation is compliance. And on AWS, the only limit is your ability to write policy as code . The build server (AWS CodeBuild) is where acceleration

The legacy model of "trust until broken" fails in the cloud. The DevSecOps model on AWS relies on and Policy as Code . | | Artifact Storage | ECR (Elastic Container

Do not run SAST, then DAST, then Container scanning sequentially. Run them in parallel stages in CodePipeline.