FREDERICK, Md.–(BUSINESS WIRE)–Fugue, a cloud safety SaaS firm, right this moment introduced help for Kubernetes safety previous to deployment. Utilizing coverage as code automation constructed on the open supply Regula coverage engine, Fugue gives a unified platform for securing infrastructure as code (IaC) and cloud runtime environments utilizing a single set of insurance policies, saving cloud groups important time and guaranteeing constant coverage enforcement throughout the event life cycle. With this launch, organizations can now use Fugue to safe infrastructure as code for Kubernetes, Terraform and AWS CloudFormation. Fugue has additionally added guidelines that align with the CIS Kubernetes Benchmark.
“Engineering groups are more and more utilizing a mixture of container orchestration, digital machines, and serverless throughout cloud suppliers, and utilizing completely different insurance policies for every part wastes an amazing period of time and invitations vulnerabilities to slide by means of the cracks,” stated Josh Stella, co-founder and CEO of Fugue. “Groups want a unified method to safe every part at each stage of the event life cycle, and with help for Kubernetes, they will safe all the infrastructure as code and apply these insurance policies to their working cloud environments.”
Fugue gives centralized IaC safety administration for cloud useful resource configurations, container orchestration, and containers. Groups can use Fugue to ascertain IaC safety visibility throughout their group. Fugue’s open supply Regula coverage engine gives tooling for engineers to verify their IaC configurations regionally and for growing and testing customized insurance policies, together with these that may verify for multi-resource vulnerabilities. Fugue and Regula use Open Coverage Agent (OPA), the open customary for coverage as code. OPA is a Cloud Native Computing Basis (CNCF) graduated challenge.
The Fugue SaaS platform and Regula challenge embrace a whole lot of pre-built insurance policies mapped to the CIS Foundations Benchmarks for Amazon Net Companies (AWS), Microsoft Azure, Google Cloud, and Kubernetes. Moreover, Fugue gives compliance mappings for SOC 2, NIST 800-53, GDPR, PCI, HIPAA, ISO 27001, CSA CCM, CIS Controls, CIS Docker, and the Fugue Best Practices Framework to catch misconfigurations that compliance could miss.
The Fugue API and CLI are first-class residents within the product, enabling engineers to construct automated IaC checks into Git workflows and CI/CD pipelines to forestall misconfiguration vulnerabilities in deployments. In contrast to with different cloud safety merchandise, groups can use those self same insurance policies to make sure cloud runtime environments keep safe post-deployment, together with cloud assets deployed exterior of IaC and CI/CD pipelines.
Fugue is a cloud safety SaaS firm enabling regulated corporations corresponding to AT&T, Purple Ventures, and SAP NS2 to make sure steady cloud safety and earn the boldness and belief of shoppers, enterprise leaders, and regulators. Fugue empowers engineering and safety groups to automate cloud coverage enforcement and transfer quicker than ever earlier than — with out breaking the principles. Since 2013, Fugue has pioneered using policy-based cloud safety automation and earned the patent on coverage as code for cloud infrastructure. For extra info, join with Fugue at www.fugue.co, GitHub, LinkedIn and Twitter.
All model names and product names are emblems or registered emblems of their respective corporations.
Tags: Fugue, cloud safety, SaaS, infrastructure as code, IaC, unified coverage engine, coverage as code, cloud, Open Coverage Agent, runtime safety, Josh Stella, KubeCon, CloudNativeCon, Kubernetes, open supply, Regula, cloud safety automation