Category:
compliance
Don’t Leave Your S3 Buckets Wide Open
By Mandi Walls
IT security can feel like an endless war against the unknown. Especially when your big old comfortable monolith with one access point gets spread out into a million small microservice pieces all over the place. Securing distributed systems is a challenge that requires constant vigilance and attention to detail.
Read moreWhy Coded Enterprises are Winning at DevOps
More than 10 years ago Chef ushered in the era of DevOps with the introduction of Chef, the “infrastructure as code” tool. Fundamental to the success of Chef was the belief that “the best way to build software is to do it in close collaboration with the people who use it.
Read moreChef Software is the First CIS Partner Certified on AWS, Azure, and GCP
By Nick Rycar
Chef is excited to announce that we have achieved official Center for Internet Security certification on the Amazon Web Services Foundations Benchmarks (level 1 & level 2).
Read moreAchieving Federal Compliance with Chef Automate and Chef InSpec
Federal agencies work hard to provide value to consumers of their services, but in order to deliver updates at the velocity their customers demand, they must ensure their infrastructure is hardened and secure throughout the software development lifecycle.
Read moreReducing Audit Pain with Continuous Compliance
No one questions that audits are stressful, painful and time-consuming. But organizations — financial institutions especially — must conduct audits to ensure security and validate compliance regulatory requirements. As security threats increase or regulations change, entities in turn must conduct more audits.
Read moreSecuring Access in Cloud Environments with Saviynt and Chef
By Nick Rycar
The days where we wondered whether or not our organization would choose to migrate workloads to the cloud are long behind us. Today the question is not if we’ll move these workloads, but how many, and how quickly we can do so.
Read moreHow CSG Decreased Audit Times by 80% Through Automation
By Sam Danyal
When it comes to audits, many organizations face a dilemma: how to decrease the time and effort spent while improving results? In preparation for an annual PCI audit, Carter McHugh, Executive Director of Agile Architecture at CSG International, decided to partner with Chef Software to automate their audit processes.
Read moreAnnouncing InSpec 3.0
By Nick Rycar
We’re excited to announce the release of InSpec 3.0! Since the last major revision of InSpec in February, InSpec has been downloaded 49270 times, we’ve merged more than 330 pull requests from 85 contributors, and added dozens of new resources. The 3.0 release includes a ton of bug fixes, usability improvements, and additional platform support.
Read moreInSpec compliance profiles for Azure’s CIS Benchmark and Azure Cloud Scanner in Chef Automate 2.0
By Davy McAleer
InSpec by Chef is a powerful “compliance as code” tool powered by an ever growing number of compliance profiles and target resources. It enables users to achieve continuous compliance across their IT environments.
Read moreMoving forward with PowerCLI instead of InSpec-VMware
By JJ Asghar
Summary If you use the VMware ecosystem in your day to day job, you may have seen the incubation InSpec project inspec-vmware and got excited about the possibilities of running InSpec tests against your VMware Software Defined Data Centers (SDDC)s and VMware on AWS.
Read more