An Intellyx BrainCandy Update
With the great enterprise migration to cloud well underway, many companies realize somewhere into their journey that while major cloud services like AWS and Azure are highly secure and resilient in and of themselves, they can’t really solve for customer misconfiguration issues that could lead to vulnerabilities or service interruptions.
Fugue offers a SaaS-based service that can discover and map complex cloud application infrastructure as it appears, and then define and enforce security and compliance settings against the configuration of that cloud estate.
“There’s great value in having a current state visualization of what’s in your cloud environment,” said Drew Wright, Fugue’s VP of communications. “The first time a team runs Fugue, they see the relationships between resources, but they usually also find some interesting things going on they weren’t aware of: Untagged resources, orphaned VPCs and security groups, and unpatched servers and applications.”
This current cloud environment state can be scanned at any event-based or scheduled interval, then validated against out-of-the-box compliance regimes and custom policy rules for a given industry, global region, or business requirement. Activity and compliance reports are then issued to appropriate alerting mechanisms or stakeholders.
Specific critical environment elements can also be defined as automatically self-healing, so if for instance a given CI/CD pipeline release turns off a customer data bucket in S3, Fugue will detect and revert the out-of-bounds configuration changes to standard.
Intellyx previously covered Fugue in 2017 and 2016, also post-AWS Re:Invent conferences.
© 2019 Intellyx. At the time of writing, Fugue is a former Intellyx customer. None of the other vendors mentioned here are Intellyx clients. Want to see more BrainCandy? Subscribe today. If you are a vendor seeking coverage from Intellyx, please contact us at PR@intellyx.com.