InSpec compliance profiles for Azure’s CIS Benchmark and Azure Cloud Scanner in Chef Automate 2.0

InSpec by Chef is a powerful “compliance as code” tool powered by an ever growing number of compliance profiles and target resources. It enables users to achieve continuous compliance across their IT environments. Over the last six months Chef has created dedicated teams to create and test profiles for a variety of OSs and Cloud […]

Read More

Moving forward with PowerCLI instead of InSpec-VMware

Summary If you use the VMware ecosystem in your day to day job, you may have seen the incubation InSpec project inspec-vmware and got excited about the possibilities of running InSpec tests against your VMware Software Defined Data Centers (SDDC)s and VMware on AWS. If you haven’t seen the inspec-vmware project, imagine the ability to audit/validate […]

Read More

Continuous Compliance for Painless Ongoing Audits

Audits are stressful. If your organization is subject to regulatory compliance rules, chances are you’ve experienced firsthand how time-consuming and painful they can be. Preparing for and satisfying an audit is often a multi-month process with e-mails and documents flying between auditors, compliance officers, information security professionals, and the teams responsible for your infrastructure and […]

Read More

Using InSpec with Cisco IOS Devices

On Wednesday, August 1, we presented a webinar on using InSpec with Cisco IOS network devices. Today, fewer than 10% of network teams are using any automation tools, yet through the NetOps 2.0 movement, network administrators are starting to adopt some of the best practices from development and operations, realizing, as Gartner says in the […]

Read More

Automating Cloud Compliance with AWS OpsWorks for Chef Automate

Chef, InSpec, and Habitat provide workflows for automating everything you manage, from infrastructure configuration to security auditing to application releases. Chef Automate ties these projects together with a powerful dashboard that aggregates data from all of your environments and provides a shared world view of the configuration and security of your estate for everyone within […]

Read More

Microsoft’s Jeremy Winter at ChefConf: Stagnation is more dangerous than change

Do Change was the theme of ChefConf 2018, and Jeremy Winter, Partner Director – Azure Management and Security, personifies change throughout his career. During his 21 year career at Microsoft, Jeremy started as a developer, moved to running operations for Hotmail, and now runs program management for Azure Management and Security. With the rapid pace […]

Read More

Harnessing the Cloud with AWS OpsWorks for Chef Automate

For the past 8 years, Stephen Figgins, System Administrator for University of Kansas Agile Technology Solutions, has been a Chef practitioner and valued member of the vibrant Chef community. At ChefConf 2018, Stephen had a conversation on the main stage with Nathan Harvey, our VP of Community Development. Stephen talked about his journey with the […]

Read More

CSG International and How DevOps Delivers Results

Six years ago, CSG International, the company that provides backend SaaS support to major telecom companies, started their DevOps transformation journey to modernize how they develop and run software. And for the past six years, CSG has made significant strides in transforming to a high-performing IT organization. Scott Prugh, SVP of Engineering and Chief Architect […]

Read More

End-of-Life Announcement for Chef Compliance Server

Today we are announcing the end-of-life date of the standalone Chef Compliance Server product to be December 31, 2018. All of the functionality of Chef Compliance Server is already incorporated into Chef Automate 2 whose general availability we announced at ChefConf 2018. Chef Automate 2 includes newer out-of-the-box compliance profiles, an improved compliance scanner with […]

Read More

InSpec GCP Deep Dive

As recently announced Chef has deepened support for Google Cloud Platform (GCP) by adding InSpec integration. Furthermore, the InSpec GCP resource pack is freely available here – suggestions (and contributions) welcome! Before looking at InSpec GCP let’s ensure we have the necessary prerequisites in place. As an aside, we will be following similar setup steps to […]

Read More