Sounds like you got replaced by automation? Still self hosting and rarely patching your infrastructure? Terraform is actually amazing to work with, and creates far more secure environments than manual configuration. Just deriding something you've clearly never used for being "cloud" wreaks of the unemployment line.
REPLACED!? As-fucking-if. How? It's job security. Terraform creates jobs. It creates work, and it has lots of friends! Devops automation does not replace IT workers because terraform modules, CI/CD pipelines and all the other god damned yaml don't write themselves. They certainly don't maintain themselves, they're very fragile, and impede change.
No, sir, I have my hand firmly up terraform's ass and am absolutely covered with cloudy stink. It's like working with your hands wearing a sticky mitten.
Now I'm going to do you a favor and forget you used patching and terraform in the same paragraph because terraform and up-to-date are not things that go together. There is something to be said about security and declarative configuration management in general though, it's about being a backstop, not saving time. Terraform's model makes it really shitty at both. As you said, "than manual configuration", as if it's one or the other, because terraform makes you think like that. This is not a problem for stateless declarative configuration frameworks, just go to the desired state, eventual consistency, be the backstop. Terraform makes you do everything directly through it up front, slow as molasses, or pay later with sketchy imports.