Category:
compliance
When the Build Chain Becomes the Battlefield: What Gartner's 2026 ThreatScape Means for Infrastructure Automation
Gartner's 2026 ThreatScape identifies software supply chain attacks as a top enterprise security threat. Learn why build-chain assurance matters for infrastructure automation and how organizations can evaluate the security, accountability and trustworthiness of the software managing their environments.
Read moreGovern at Scale and Make Automation Auditable and Predictable
By Mark Cavins
At enterprise scale, automation without governance creates risk. Progress Chef 360 embeds governance directly into execution, ensuring every automated action is authorised, traceable and auditable - regardless of the tool used. By combining policy‑as‑code, continuous compliance, closed‑loop remediation and human‑governed AIOps, Chef transforms fragmented automation into a predictable, scalable operating model. Unlike Ansible, Puppet and SaltStack, Chef delivers built‑in governance that grows with your enterprise, enabling teams to move fast without sacrificing control, compliance or trust.
Read moreBeyond YAML: The ROI Architecture of Policy-as-Code with Progress Chef
By Mark Cavins
Discover how Progress Chef improves ROI with policy-as-code, reducing YAML sprawl, toil, and MTTR through scalable, testable infrastructure automation
Read moreChef InSpec 6 Licensing Tiers: How to Access the License Keys
Technical blog on how to access License Key with different tiers.
Read moreWhat is Zero Trust, and Why Should We Care?
Zero-Trust security model is an approach to designing and implementing IT systems, it enforces and reinforces the belief of never trust, always verify. This quick blog provides an outlook on why it is important for success and how you can implement today.
Read moreCompliance Audit and Remediate with a Single Solution - Chef InSpec
Chef InSpec enables on-demand auditing and remediation and gives customers a consolidated view of their organization’s security and compliance status in real-time. This blog post discusses how Chef InSpec can automate and streamline compliance audits and make the software delivery phase less stressful for the dev and test teams.
Read moreInfrastructure Testing and Compliance with Chef and Terraform
This blog discusses how modern configuration management and provisioning tools, such as Chef and Terraform, use the concepts of infrastructure as code and policy as code to deploy secure instances in the cloud.
Read moreDeconstructing Compliance and Security – How is it Different?
The blog discusses how compliance and security differ and how Chef can help you achieve compliance while maintaining a secure infrastructure.
Read moreWhat is System Hardening? Standards and Best Practices
Read how Chef enables IT teams to perform system hardening with the help of continuous security audits and remediation that detects and fixes vulnerabilities in diverse IT fleets.
Read moreAutomating PCI-DSS Compliance with Chef
Any company that handles credit card data, especially in the United States, is subject to the Payment Card Industry Data Security Standard (PCI DSS), and already knows how difficult and time-consuming PCI audits can be.
Read more