Secure CI/CD Pipeline for PCI-DSS Compliance | Demonstrates DevSecOps best practices with automated security scanning (SAST), secrets management, and Zero Trust architecture using AWS CodePipeline, Terraform, and Checkov | Multi-account AWS deployment with KMS encryption and manual approval gates | Requirements 6.2 & 6.3 compliant
terraform pci-dss infrastructure-as-code compliance aws-codepipeline aws-security codebuild security-automation devsecops zero-trust aws-organizations sast secrets-management ci-cd-pipeline terraform-aws security-scanning checkov secure-sdlc kms-encryption
-
Updated
Mar 4, 2026 - HCL