Complex systems that are multi tiered, are being used in different areas such as test, dev, prod usually have an Orchestrator to roll out changes.
According to Wiki:
“In system administration, orchestration is the automated configuration, coordination, and management of computer systems and software.”
This means in a context of security, that an orchestrator is a good tool used to apply or build systems in an automated, reproducible and auditable way.
Examples are Ansible, Puppet, Salt, Terraform or AWS CloudFormation. These tools allow you to write the infrastructure as a code and then apply this code to be reflected into the (cloud-)environment.
It is recommended to apply security checks using automated source code analyzer such as tfsec or checkov to check for misconfigurations and security weaknesses. This shifts security to the left.
