Match each automation security concept (left) with its corresponding best practice (right).
Why this answer
This matching pairs key concepts with their best practices: Immutable infrastructure -> never modify after deployment, Infrastructure as Code -> version control all configurations, Secret management -> use vault for credentials, CI/CD pipeline scanning -> scan images before deployment.
Exam trap
Candidates might confuse 'immutable infrastructure' with 'infrastructure as code'.