Laceworks uses Static Analysis: This component scans Terraform configuration files (*.tf) to identify security vulnerabilities, misconfigurations, and deviations from security standards. It checks against a predefined set of rules based on industry standards, such as CIS benchmarks, and custom rules defined by your organization. Policy-as-Code: Lacework IaC Security for Terraform enables organizations to define custom security policies in a human-readable and machine-executable format.