During December 2024, JJ Zhang delivered a targeted policy enhancement in the lacework/terraform-aws-config repository, enabling the retrieval of AWS Glue workflow information by adding the Glue GetWorkflows permission to an AWS IAM policy. This update was implemented using HCL and focused on infrastructure as code principles, ensuring minimal scope to reduce risk and maintain security boundaries. JJ validated the integration within the existing Terraform-based policy framework, supporting improved automation and governance without expanding the blast radius. The work demonstrated proficiency in policy-as-code, secure change management, and Terraform/IAM policy integration, addressing a specific need for programmatic workflow visibility.