Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Learn how to manage millions of access rules across large-scale, multi-vendor network infrastructures through this 23-minute conference talk from NANOG. Discover Meta's approach to streamlining access request onboarding while maintaining uninterrupted network access through an automated pipeline that reduces manual efforts and minimizes configuration errors. Explore the adoption and customization of CAPIRCA, an open-source firewall and network security policy management tool, to create vendor-agnostic configurations that simplify complex network infrastructures. Understand how Meta has enhanced CAPIRCA with additional services including user access tracing, deep inspection of user changes, and ad-hoc auditing systems for access rules. Examine the development of a risk assessment engine that monitors and controls network access from both production and corporate environments, providing real-time visibility into how changes impact the overall network and blocking high-risk modifications to maintain security posture. Gain insights into strategies for simplifying policy management across cross-platform networks while maintaining developer productivity and keeping malicious actors at bay, presented by Tavleen Kaur, a Production Engineer at Meta's Infrastructure Security Engineering Organization.
