With hybrid clouds now often the starting point for organizations in their cloud journey, management, access control, data use, and service contracts become more difficult with multi-cloud convergence, according to the Cloud Security Alliance in a whitepaper. “Although the hybrid cloud environment seamlessly integrates private and public cloud, bringing onboard new IT capabilities to the … continue reading
Puppet has announced a new solution designed to simplify hybrid infrastructure compliance for the Global 5000. Puppet Comply will work in conjunction with Puppet Enterprise to assess, remediate, and enforce infrastructure configuration compliance policies at scale. Additionally, the solution is designed to work across traditional and cloud environments. “In today’s enterprise, CIOs are responsible for … continue reading
As we continue to try to exist in a world where data breaches are commonplace occurrences, organizations have to ask more questions when it comes to storing data. This is especially true when data is being stored with a third party. Companies need to comply, not only with their own internal rules, but with external … continue reading
Container security company StackRox is giving customers the means to meet more compliance standards with its latest release of the StackRox Kubernetes Security Platform. Now, the solution offers ways for organizations to verify and provide evidence that they are complying with NIST SP 800-190, PCI DSS 3.2, and HIPAA standards. Organizations will be able to … continue reading
In the space of time it takes you to read this blog post and finish your morning coffee, a company at the vanguard of DevSecOps, such as Etsy, Amazon or Netflix, will have completed yet another deployment – one of potentially thousands per day. Deployment frequency has accelerated to a pace that would have been … continue reading
Chef has announced a major release to its compliance automation platform InSpec. Version 3.0 of the solution includes a new plugin architecture, improved usability, enhanced management and automation compliance for Terraform, and improved performance. According to the company, this release is meant to target DevSecOps teams. In addition, the release includes a number of bug … continue reading