If you are embracing DevOps, cloud and containers, you may be at risk if you’re not keeping your security methodologies up to date with these new technologies. New security techniques are required in order to keep up with current technology trends, and the Center for Internet Security (CIS) provides free cybersecurity best practices for many newer platforms.
The CIS benchmarks and controls provide clear instruction to help any organization tackle threats and reduce risk. Meanwhile, Tripwire makes benchmark alignment simple in cloud and container environments, securing each component of your DevOps toolchain.
Many organizations are moving on-premise infrastructure into the cloud, which requires a wealth of new security know-how. Traditional security monitoring tools may lack visibility into these new environments. CIS has released benchmarks for Amazon Web Services, Microsoft Azure and Google Cloud Platform, giving much-needed guidance for those charged with securing these platforms. These benchmarks cover both familiar topics with a cloud twist and also new paradigms, everything from Identity and Access Management (IAM) configuration to virtual networking and computing.
Tripwire Configuration Manager helps overcome the cloud infrastructure visibility problem, allowing the monitoring of cloud configuration data and validation of CIS compliance within your cloud platforms. Common misconfigurations can be automatically remedied and enforced by Tripwire Configuration Manager, elevating your security baseline in less time while requiring fewer resources.
Another hot topic is containerization, and many of those embracing containers are unaware that the misconfiguration of container hosts can be equivalent to granting domain administrator permissions to a successful attacker. Locking down your container hosts is essential, and CIS once again provides benchmarking guides for Docker and Kubernetes hosts to keep them secure.
*** This is a Security Bloggers Network syndicated blog from The State of Security authored by Ben Layer. Read the original post at: https://www.tripwire.com/state-of-security/devops/achieve-cis-compliance-cloud-container-devops/