Announcing Chef Automate Compliance Training Course

How can you ensure that your systems are secure without slowing down your deployments? Use Chef Automate for compliance. Chef Automate compliance is a solution that allows you to assess your infrastructure’s adherence to compliance requirements and to monitor that infrastructure on an ongoing basis. With Chef Automate compliance, you can express your security requirements […]

Read More

InSpec goes networking

Recently we announced the release of InSpec for cloud platforms like AWS, Azure, and VMware. It demonstrates InSpec’s evolution in going from operating systems compliance to platforms and APIs compliance. During the keynote at ChefConf 2017, Christoph Hartmann highlighted another part of this evolution: InSpec’s support for network management APIs. In this vein, we collaborated with […]

Read More

Chef Announcements: Lighting the Path from Here to There

Technology shifts, such as the moves toward cloud-native applications and container-first architectures, make it clear that tomorrow will look very different from today. But how to get from here to there? Today Chef announced a host of new product features, partner offerings, and skill-building opportunities that, taken together, light a path for enterprises to follow. At […]

Read More

Compliance automation: Bridging the gap between development & information security

Speed is nothing without control DevOps makes software deployment faster. But without proper controls, that may mean that developers are also releasing security vulnerabilities more quickly. The fast pace of innovation will not be slowing down and the pressure to deliver rapidly keeps increasing. At the same time, cybersecurity threats keep getting more innovative while […]

Read More

InSpec launches support for cloud platform assessments

InSpec Cloud Modules We are proud to announce the release of three new open-source incubation projects to the InSpec community: inspec-aws, inspec-azure, and inspec-vmware. With these projects, InSpec extends its reach into these widely used platforms. You can now use InSpec for cloud native security and integration testing. When we first released InSpec, we focused […]

Read More

Achieving Windows Compliance with InSpec

This blog post is a follow-up on our Windows Compliance with InSpec webinar by Joe Gardiner, Senior Solutions Architect and Christoph Hartmann, InSpec Creator that was presented live on April 11, 2017. In that webinar, we describe what Continuous Compliance is and we cover assessment with InSpec and remediation with Chef. This post provides additional […]

Read More

Adding compliance assurance into DevOps practices to ship software faster with less risk

Software-based services — apps! — are now the primary way a company connects with customers. A company’s best chance in competing for a larger piece of the market is by shipping software faster. Teams need to continuously deliver infrastructure to run applications, regardless of location or computing environment. But companies can’t ship software faster if […]

Read More

Quantifying DevOps Outcomes: Managing Risk

Last week, we held our second webinar in a four part series focused on digital transformation. In that session, we focused on why mitigating risk is essential to increasing speed. In case you missed it, you can watch a recording of the second episode, “Managing Risk” below. Outperformance means shipping software faster, but also more safely […]

Read More