Chef’s Approach to CIS Critical Security Controls v7.0

The Center for Internet Security (CIS) have just released the latest version of the Critical Security Controls, designed to provide patterns and practices to help protect organizations and data from cyber attacks. These updated controls have been developed based on feedback from actual cyber attacks faced by organizations using input from a wide spectrum of […]

Read More

Applying Compliance on Azure Government with InSpec

In government, compliance and security are a critical component of our job function. The current state of compliance frameworks are bulky and unwieldy for those inexperienced with OpenSCAP/XML. Microsoft Azure Government cloud and InSpec are designed to provide a common language for security, compliance, and automation teams to converge around. Azure Government is designed to […]

Read More

Understand how Chef Supports the AWS Shared Responsibility Model

One of the key reasons organizations look at cloud migration is to improve the security of their IT systems. Cloud vendors such as AWS bring a level of expertise and scale to security that is impossible for an IT organization to replicate in a traditional datacenter. Even so, it’s critical to understand what security tasks […]

Read More

Detect Spectre and Meltdown Vulnerabilities with InSpec

Earlier this month, Google Project Zero announced several security vulnerabilities in many modern processors, commonly referred to by the names Spectre and Meltdown. These vulnerabilities arise from the exploitation of performance optimizations in modern CPUs, features known as branch prediction and speculative execution. You can read more about these hardware vulnerabilities at the Spectre Attack […]

Read More

Improvements for Windows and InSpec

We are proud to announce some major improvements recently implemented in InSpec. Jerry Aldrich and I, two members of Chef’s InSpec Engineering team, have added two features which considerably improve performance when used with the Windows platform. Backend Caching Improvements First, we have added backend caching for commands. This change enables InSpec to cache the […]

Read More

Chef + Saviynt: Putting Governance into your DevOps workflow

A key reason that an enterprise adopts infrastructure automation is to allow for the fast and efficient deployment and ongoing management of their infrastructure. They also realize an added benefit in that automation can be a key component in satisfying your governance, risk management and compliance (GRC) challenges – by standardizing and automating the way […]

Read More

GDPR as part of your corporate compliance profile

With the changes in EU regulation that GDPR introduces, specifically relating to the processing of EU citizens’ personal data, organisations are facing fresh challenges in how they prove compliance. GDPR brings particular burdens with the ‘Privacy by Design’ mandate that requires data privacy be part of the system design process from day one. In previous GDPR […]

Read More