October’s nearly over, and for many of us that means an evening full of cobwebs, costumes, candy, tricks, and treats as we prepare for Halloween night. It also means that today is the final day of National Cybersecurity Awareness Month! It’s a fitting pairing, as few things are scarier to an IT professional than the […]
Read MoreCategory: cloud
Secure Your Cloud Estate with Continuous Audits
To meet the demands of an ever more connected world, executing on a comprehensive cloud strategy has become a critical component for organizations at any scale. While cloud platforms have made it incredibly easy to define and scale environments on demand, with those capabilities come new challenges in how to validate that those environments have […]
Read MoreDon’t Leave Your S3 Buckets Wide Open
IT security can feel like an endless war against the unknown. Especially when your big old comfortable monolith with one access point gets spread out into a million small microservice pieces all over the place. Securing distributed systems is a challenge that requires constant vigilance and attention to detail. It’s more than a single person […]
Read MoreEnd of Support: A Catalyst to Application Lifecycle Modernization
As many of you know, the standard Microsoft lifecycle policy is 10 years of support (5 for mainstream + 5 for extended support) for business and developer products, such as SQL and Windows servers. At the end of the extended support period, patches or security updates are no longer provided, creating security and compliance issues. […]
Read MoreChef’s Cloud Partners Take the Stage at ChefConf 2019
ChefConf 2019 is going to be a blast! And in addition to the fun you will be having with the rest of the Chef community, there will be a lot of good old-fashioned learning opportunities. I want to call specific attention to three of the workshops being delivered on Monday, May 20. I am pleased that […]
Read MoreSecuring Access in Cloud Environments with Saviynt and Chef
The days where we wondered whether or not our organization would choose to migrate workloads to the cloud are long behind us. Today the question is not if we’ll move these workloads, but how many, and how quickly we can do so. As more and more of us undergo cloud migration initiatives, we find we […]
Read MoreA Deeper Dive into InSpec 3 and Google Cloud Platform
The recently released InSpec 3 expands the developer ecosystem for compliance-as-code through plugins, integrations, and other new capabilities. This post will outline some of the ways that InSpec brings compliance-as-code to Google Cloud Platform (GCP). InSpec 3 includes fully supported platform support for GCP and premium content in Chef Automate for the Center for Internet […]
Read MoreAnnouncing Chef Automate Managed Service for Azure
Today at Microsoft Ignite we announced the limited Public Preview of a new Chef service, Chef Automate Managed Service for Azure. This is a fully-managed instance of Chef Automate that runs in your Azure tenant, leveraging Azure Managed Services. What you get is easy deployment, zero maintenance, automatic upgrades, as well as backups of your […]
Read MoreIntroducing Chef Workstation in Azure Cloud Shell
At ChefConf 2018 in May, we announced the availability of InSpec in Azure Cloud Shell, allowing users to run InSpec scans anywhere they can connect from their Azure subscription. All without ever needing to install software on their local machine. At that time we also announced a new tool called Chef Workstation, which includes the […]
Read MoreInSpec compliance profiles for Azure’s CIS Benchmark and Azure Cloud Scanner in Chef Automate 2.0
InSpec by Chef is a powerful “compliance as code” tool powered by an ever growing number of compliance profiles and target resources. It enables users to achieve continuous compliance across their IT environments. Over the last six months Chef has created dedicated teams to create and test profiles for a variety of OSs and Cloud […]
Read More