Date held: Wednesday, 15 November 2017
It’s time for a new approach to securing DevOps. Puppet and CloudPassage have teamed up to bring you a solution that automates security and compliance in any infrastructure—at any scale—that eliminates the security bottleneck. Join us to learn how the Puppet module for CloudPassage Halo helps your security teams keep pace with the demands of the modern, agile enterprise.
What Are The Drone Anti-jamming Systems Technology?
Shift Left: Puppet + CloudPassage = New Approach to Securing DevOps
1. Puppet presents “Talking Tech”
A new webinar series featuring exciting technology solutions
that are driving the industry forward
Shift Left: Puppet + CloudPassage = New Approach to Securing DevOps
Date: Wednesday, 15 November
3. Talking Tech: Puppet Webinar Series
Presenters
Tim Zonca
Vice President
Worldwide Marketing and Business Development
Puppet
Amit Gupta
Vice President
Product Management
CloudPassage
4. Talking Tech: Puppet Webinar Series
● DevOps and security: a Puppet
perspective
● Automating security with Puppet
and CloudPassage
What we’re talking about
Agenda
8. Talking Tech: Puppet Webinar Series
Different teams. Different needs.
Model desired state Continual enforcement
9. Talking Tech: Puppet Webinar Series
Benefits of integrating security early and often
10. Talking Tech: Puppet Webinar Series
CloudPassage and Puppet
Automated Security for Agile Enterprise
Meets the DevOps Leader
11. Talking Tech: Puppet Webinar Series
End-to-end, automated security
with Puppet and CloudPassage
12. Talking Tech: Puppet Webinar Series
Traditional security tools don’t work in the cloud
Source: Holger Schulze, Cloud Security Spotlight Report / March 2017
Q
13. Talking Tech: Puppet Webinar Series
Five critical attributes for modern IT security
Visibility
2
Speed
1
Integration
4
Portability
3
Scale
5
14. Talking Tech: Puppet Webinar Series
Key challenges for modern enterprise Ops teams
Identifying
configuratio
n drift in
deployed
workloads
in real-time
Running
security
checks at the
end of the dev
cycle -slow &
expensive
Integrating
security with
automated
CI/CD & IT
service
delivery tools
Lacking a
single
security
solution for
workloads
&
containers
Applying
security
checks &
controls in
highly elastic
environments
Visibility
2
Speed
1
Integration
4
Portability
3
Scale
5
Goal
Rapidly deliver
and maintain
innovative,
reliable, &
secure apps &
systems to drive
growth
15. Workload security and compliance automation from
development to deployment, across clouds and data
centers, servers and containers – at DevOps speed &
scale
CloudPassage Halo
Deliver frictionless security
16. Talking Tech: Puppet Webinar Series
Security at the speed of the modern enterprise
17. Talking Tech: Puppet Webinar Series
Orchestrating security & compliance with CloudPassage
and Puppet
18. Talking Tech: Puppet Webinar Series
Example: Automated installation and policy assignment
100100
110111
0
000100
110101
1
POLICY
- Firewall
- Config
- Accounts
Tag
ABC
D
1001
0
8927
Halo agent
with tag
Policy Telemetry
1
2 3
Amazon
EC2
Amazon
EC2
19. Talking Tech: Puppet Webinar Series
Example: Fast feedback to developer
Amazon
EC2
21. Talking Tech: Puppet Webinar Series
Solving problems together
Puppet automates deployment
PE + CloudPassage SolutionChallenge
Security tools are friction
Built for dynamic cloud environments
High cost of disparate point products Multi-environment, containers, VMs
Manual updates needed to ensure
security and compliance
Automatically remediate any changes
to security and compliance policies
Security tools require maintenance