As organizations rapidly adopt new technologies such as serverless, containers, and servicemesh, cloud infrastructure is becoming increasingly “immutable”: infrastructure is never modified after it is deployed. If it needs to be modified in any way, new infrastructure has to be provisioned through code. Unfortunately, traditional cloud security approaches are untenable for securing transient cloud native infrastructure. As a result, over 30 billion records have been exposed in cloud breaches over the past two years and the velocity as well as sophistication of attacks is increasing. The only way to secure immutable infrastructure is to adopt a paradigm of immutable security. In this talk, Piyush will deep dive on the three principles behind immutable security and illustrate how to implement it.