SlideShare a Scribd company logo

IaC Security and Continuous Compliance

Prancer Io
Prancer Io

Prancer Enterprise (https://www.prancer.io) provides a pre-deployment and post-deployment multi-cloud security platform for Infrastructure as Code (IaC) and live cloud environments.

Technology
1 of 1
Download to read offline
IaC Security and Continuous Compliance Prancer Enterprise is announcing that its entire cloud compliance policies repository is now open source. The repository is available on GitHub at https://github.com/prancer-io/prancer- compliance-test This move reflects Prancer’s commitment to open source technology and harness the power of community collaboration to move great ideas through the pipeline faster. These compliance policies that focused on IaC Security and live cloud resources are based on CIS, NIST 800, PCI, HIPPA, HITRUST, CSA CCM and ISO 27001 compliance standards. These policies are all in REGO Open Policy Agent (OPA) language. Prancer Enterprise platform helps companies achieve end-to-end security in the cloud by shifting security to the left and apply it early in the development process. Cloud DevOps engineers could have an early feedback on the security of the Infrastructure as Code (IaC) templates with every commit they are making to the code. Prancer Enterprise Cloud Compliance repository has more than 1000 policies both on the Infrastructure as Code (IaC) Security and post-deployment resources. This unique Cloud compliance policy repository is the most significant contribution to the open-source community based on the de facto Rego policy language. As more companies begin to rely on cloud technologies, they are also looking for ways to apply compliance to their cloud environment easily and make it a secure place for their workloads. Prancer Platform helps companies to leverage security throughout the lifecycle of their cloud deployment. Prancer Platform integrates into DevOps pipelines and provides IaC Security scan. About Prancer Prancer Enterprise (https://www.prancer.io) provides a pre-deployment and post-deployment multi-cloud security platform for Infrastructure as Code (IaC) and live cloud environments. It shifts the security to the left and provides end-to-end security scanning based on the Policy as Code concept. DevOps engineers can use it for static code analysis on IaC to find security drifts and maintain their cloud security posture with continuous compliance features.

Recommended

Prancer Enterprise has achieved SOC 2 Type I compliance in accordance with Am...
Prancer Enterprise has achieved SOC 2 Type I compliance in accordance with Am...Prancer Enterprise has achieved SOC 2 Type I compliance in accordance with Am...
Prancer Enterprise has achieved SOC 2 Type I compliance in accordance with Am...Prancer Io
 
Prancer Enterprise announces today the release of the Zero Trust Security Val...
Prancer Enterprise announces today the release of the Zero Trust Security Val...Prancer Enterprise announces today the release of the Zero Trust Security Val...
Prancer Enterprise announces today the release of the Zero Trust Security Val...Prancer Io
 
Prancer for Offensive Security Testing
Prancer for Offensive Security TestingPrancer for Offensive Security Testing
Prancer for Offensive Security TestingPrancer Io
 
Why do Next-generation snapshot scanning security solutions raise security co...
Why do Next-generation snapshot scanning security solutions raise security co...Why do Next-generation snapshot scanning security solutions raise security co...
Why do Next-generation snapshot scanning security solutions raise security co...Prancer Io
 
Announcing the launch of Red and Blue Cyber Security Show
Announcing the launch of Red and Blue Cyber Security ShowAnnouncing the launch of Red and Blue Cyber Security Show
Announcing the launch of Red and Blue Cyber Security ShowPrancer Io
 
9 tips for assessing your modern cloud security toolsets.pdf
9 tips for assessing your modern cloud security toolsets.pdf9 tips for assessing your modern cloud security toolsets.pdf
9 tips for assessing your modern cloud security toolsets.pdfPrancer Io
 
Infrastructure as Code
Infrastructure as CodeInfrastructure as Code
Infrastructure as CodePrancer Io
 
IAC Compliance.pdf
IAC Compliance.pdfIAC Compliance.pdf
IAC Compliance.pdfPrancer Io
 

Recommended

Prancer Enterprise has achieved SOC 2 Type I compliance in accordance with Am...
Prancer Enterprise has achieved SOC 2 Type I compliance in accordance with Am...Prancer Enterprise has achieved SOC 2 Type I compliance in accordance with Am...
Prancer Enterprise has achieved SOC 2 Type I compliance in accordance with Am...Prancer Io
 
Prancer Enterprise announces today the release of the Zero Trust Security Val...
Prancer Enterprise announces today the release of the Zero Trust Security Val...Prancer Enterprise announces today the release of the Zero Trust Security Val...
Prancer Enterprise announces today the release of the Zero Trust Security Val...Prancer Io
 
Prancer for Offensive Security Testing
Prancer for Offensive Security TestingPrancer for Offensive Security Testing
Prancer for Offensive Security TestingPrancer Io
 
Why do Next-generation snapshot scanning security solutions raise security co...
Why do Next-generation snapshot scanning security solutions raise security co...Why do Next-generation snapshot scanning security solutions raise security co...
Why do Next-generation snapshot scanning security solutions raise security co...Prancer Io
 
Announcing the launch of Red and Blue Cyber Security Show
Announcing the launch of Red and Blue Cyber Security ShowAnnouncing the launch of Red and Blue Cyber Security Show
Announcing the launch of Red and Blue Cyber Security ShowPrancer Io
 
9 tips for assessing your modern cloud security toolsets.pdf
9 tips for assessing your modern cloud security toolsets.pdf9 tips for assessing your modern cloud security toolsets.pdf
9 tips for assessing your modern cloud security toolsets.pdfPrancer Io
 
Infrastructure as Code
Infrastructure as CodeInfrastructure as Code
Infrastructure as CodePrancer Io
 
IAC Compliance.pdf
IAC Compliance.pdfIAC Compliance.pdf
IAC Compliance.pdfPrancer Io
 
IaC Security and Continuous Compliance
IaC Security and Continuous ComplianceIaC Security and Continuous Compliance
IaC Security and Continuous CompliancePrancer Io
 
Security Validation as Code
Security Validation as CodeSecurity Validation as Code
Security Validation as CodePrancer Io
 
Automated Pentesting vs Dynamic Application Security Testing
Automated Pentesting vs Dynamic Application Security TestingAutomated Pentesting vs Dynamic Application Security Testing
Automated Pentesting vs Dynamic Application Security TestingPrancer Io
 
Security Validation
Security ValidationSecurity Validation
Security ValidationPrancer Io
 
Cloud Security Validation at Scale
Cloud Security Validation at ScaleCloud Security Validation at Scale
Cloud Security Validation at ScalePrancer Io
 
Security Validation as Code.pdf
Security Validation as Code.pdfSecurity Validation as Code.pdf
Security Validation as Code.pdfPrancer Io
 
Prancer web interface for the ease of use
Prancer web interface for the ease of usePrancer web interface for the ease of use
Prancer web interface for the ease of usePrancer Io
 
What are the configuration files in the prancer framework
What are the configuration files in the prancer frameworkWhat are the configuration files in the prancer framework
What are the configuration files in the prancer frameworkPrancer Io
 
Automated pentesting vs dynamic application security testing (dast) (2)
Automated pentesting vs dynamic application security testing (dast) (2)Automated pentesting vs dynamic application security testing (dast) (2)
Automated pentesting vs dynamic application security testing (dast) (2)Prancer Io
 
Is iac scanning scalable in the git ops era
Is iac scanning scalable in the git ops eraIs iac scanning scalable in the git ops era
Is iac scanning scalable in the git ops eraPrancer Io
 
Prancer web interface for the ease of use
Prancer web interface for the ease of usePrancer web interface for the ease of use
Prancer web interface for the ease of usePrancer Io
 
Challenges with manual vulnerability assessments and manual penetration testing
Challenges with manual vulnerability assessments and manual penetration testingChallenges with manual vulnerability assessments and manual penetration testing
Challenges with manual vulnerability assessments and manual penetration testingPrancer Io
 
Vs code extension
Vs code extensionVs code extension
Vs code extensionPrancer Io
 
Prancer is announcing security scan of azure service operator for kubernetes ...
Prancer is announcing security scan of azure service operator for kubernetes ...Prancer is announcing security scan of azure service operator for kubernetes ...
Prancer is announcing security scan of azure service operator for kubernetes ...Prancer Io
 
How prancer protects azure v ms from critical “omigod” vulnerabilities
How prancer protects azure v ms from critical “omigod” vulnerabilitiesHow prancer protects azure v ms from critical “omigod” vulnerabilities
How prancer protects azure v ms from critical “omigod” vulnerabilitiesPrancer Io
 
Prancer enterprise announces a significant expansion in its infrastructure as...
Prancer enterprise announces a significant expansion in its infrastructure as...Prancer enterprise announces a significant expansion in its infrastructure as...
Prancer enterprise announces a significant expansion in its infrastructure as...Prancer Io
 
How to use prancer configuration wizard for easy repository onboarding for ia...
How to use prancer configuration wizard for easy repository onboarding for ia...How to use prancer configuration wizard for easy repository onboarding for ia...
How to use prancer configuration wizard for easy repository onboarding for ia...Prancer Io
 
Prancer iac security scanner prevents sensitive files to be checked in to rem...
Prancer iac security scanner prevents sensitive files to be checked in to rem...Prancer iac security scanner prevents sensitive files to be checked in to rem...
Prancer iac security scanner prevents sensitive files to be checked in to rem...Prancer Io
 
Cloud compliance test
Cloud compliance testCloud compliance test
Cloud compliance testPrancer Io
 
Azure's infrastructure as-code
Azure's infrastructure as-codeAzure's infrastructure as-code
Azure's infrastructure as-codePrancer Io
 

More Related Content

More from Prancer Io

IaC Security and Continuous Compliance
IaC Security and Continuous ComplianceIaC Security and Continuous Compliance
IaC Security and Continuous CompliancePrancer Io
 
Security Validation as Code
Security Validation as CodeSecurity Validation as Code
Security Validation as CodePrancer Io
 
Automated Pentesting vs Dynamic Application Security Testing
Automated Pentesting vs Dynamic Application Security TestingAutomated Pentesting vs Dynamic Application Security Testing
Automated Pentesting vs Dynamic Application Security TestingPrancer Io
 
Security Validation
Security ValidationSecurity Validation
Security ValidationPrancer Io
 
Cloud Security Validation at Scale
Cloud Security Validation at ScaleCloud Security Validation at Scale
Cloud Security Validation at ScalePrancer Io
 
Security Validation as Code.pdf
Security Validation as Code.pdfSecurity Validation as Code.pdf
Security Validation as Code.pdfPrancer Io
 
Prancer web interface for the ease of use
Prancer web interface for the ease of usePrancer web interface for the ease of use
Prancer web interface for the ease of usePrancer Io
 
What are the configuration files in the prancer framework
What are the configuration files in the prancer frameworkWhat are the configuration files in the prancer framework
What are the configuration files in the prancer frameworkPrancer Io
 
Automated pentesting vs dynamic application security testing (dast) (2)
Automated pentesting vs dynamic application security testing (dast) (2)Automated pentesting vs dynamic application security testing (dast) (2)
Automated pentesting vs dynamic application security testing (dast) (2)Prancer Io
 
Is iac scanning scalable in the git ops era
Is iac scanning scalable in the git ops eraIs iac scanning scalable in the git ops era
Is iac scanning scalable in the git ops eraPrancer Io
 
Prancer web interface for the ease of use
Prancer web interface for the ease of usePrancer web interface for the ease of use
Prancer web interface for the ease of usePrancer Io
 
Challenges with manual vulnerability assessments and manual penetration testing
Challenges with manual vulnerability assessments and manual penetration testingChallenges with manual vulnerability assessments and manual penetration testing
Challenges with manual vulnerability assessments and manual penetration testingPrancer Io
 
Vs code extension
Vs code extensionVs code extension
Vs code extensionPrancer Io
 
Prancer is announcing security scan of azure service operator for kubernetes ...
Prancer is announcing security scan of azure service operator for kubernetes ...Prancer is announcing security scan of azure service operator for kubernetes ...
Prancer is announcing security scan of azure service operator for kubernetes ...Prancer Io
 
How prancer protects azure v ms from critical “omigod” vulnerabilities
How prancer protects azure v ms from critical “omigod” vulnerabilitiesHow prancer protects azure v ms from critical “omigod” vulnerabilities
How prancer protects azure v ms from critical “omigod” vulnerabilitiesPrancer Io
 
Prancer enterprise announces a significant expansion in its infrastructure as...
Prancer enterprise announces a significant expansion in its infrastructure as...Prancer enterprise announces a significant expansion in its infrastructure as...
Prancer enterprise announces a significant expansion in its infrastructure as...Prancer Io
 
How to use prancer configuration wizard for easy repository onboarding for ia...
How to use prancer configuration wizard for easy repository onboarding for ia...How to use prancer configuration wizard for easy repository onboarding for ia...
How to use prancer configuration wizard for easy repository onboarding for ia...Prancer Io
 
Prancer iac security scanner prevents sensitive files to be checked in to rem...
Prancer iac security scanner prevents sensitive files to be checked in to rem...Prancer iac security scanner prevents sensitive files to be checked in to rem...
Prancer iac security scanner prevents sensitive files to be checked in to rem...Prancer Io
 
Cloud compliance test
Cloud compliance testCloud compliance test
Cloud compliance testPrancer Io
 
Azure's infrastructure as-code
Azure's infrastructure as-codeAzure's infrastructure as-code
Azure's infrastructure as-codePrancer Io
 

More from Prancer Io (20)

IaC Security and Continuous Compliance
IaC Security and Continuous ComplianceIaC Security and Continuous Compliance
IaC Security and Continuous Compliance
 
Security Validation as Code
Security Validation as CodeSecurity Validation as Code
Security Validation as Code
 
Automated Pentesting vs Dynamic Application Security Testing
Automated Pentesting vs Dynamic Application Security TestingAutomated Pentesting vs Dynamic Application Security Testing
Automated Pentesting vs Dynamic Application Security Testing
 
Security Validation
Security ValidationSecurity Validation
Security Validation
 
Cloud Security Validation at Scale
Cloud Security Validation at ScaleCloud Security Validation at Scale
Cloud Security Validation at Scale
 
Security Validation as Code.pdf
Security Validation as Code.pdfSecurity Validation as Code.pdf
Security Validation as Code.pdf
 
Prancer web interface for the ease of use
Prancer web interface for the ease of usePrancer web interface for the ease of use
Prancer web interface for the ease of use
 
What are the configuration files in the prancer framework
What are the configuration files in the prancer frameworkWhat are the configuration files in the prancer framework
What are the configuration files in the prancer framework
 
Automated pentesting vs dynamic application security testing (dast) (2)
Automated pentesting vs dynamic application security testing (dast) (2)Automated pentesting vs dynamic application security testing (dast) (2)
Automated pentesting vs dynamic application security testing (dast) (2)
 
Is iac scanning scalable in the git ops era
Is iac scanning scalable in the git ops eraIs iac scanning scalable in the git ops era
Is iac scanning scalable in the git ops era
 
Prancer web interface for the ease of use
Prancer web interface for the ease of usePrancer web interface for the ease of use
Prancer web interface for the ease of use
 
Challenges with manual vulnerability assessments and manual penetration testing
Challenges with manual vulnerability assessments and manual penetration testingChallenges with manual vulnerability assessments and manual penetration testing
Challenges with manual vulnerability assessments and manual penetration testing
 
Vs code extension
Vs code extensionVs code extension
Vs code extension
 
Prancer is announcing security scan of azure service operator for kubernetes ...
Prancer is announcing security scan of azure service operator for kubernetes ...Prancer is announcing security scan of azure service operator for kubernetes ...
Prancer is announcing security scan of azure service operator for kubernetes ...
 
How prancer protects azure v ms from critical “omigod” vulnerabilities
How prancer protects azure v ms from critical “omigod” vulnerabilitiesHow prancer protects azure v ms from critical “omigod” vulnerabilities
How prancer protects azure v ms from critical “omigod” vulnerabilities
 
Prancer enterprise announces a significant expansion in its infrastructure as...
Prancer enterprise announces a significant expansion in its infrastructure as...Prancer enterprise announces a significant expansion in its infrastructure as...
Prancer enterprise announces a significant expansion in its infrastructure as...
 
How to use prancer configuration wizard for easy repository onboarding for ia...
How to use prancer configuration wizard for easy repository onboarding for ia...How to use prancer configuration wizard for easy repository onboarding for ia...
How to use prancer configuration wizard for easy repository onboarding for ia...
 
Prancer iac security scanner prevents sensitive files to be checked in to rem...
Prancer iac security scanner prevents sensitive files to be checked in to rem...Prancer iac security scanner prevents sensitive files to be checked in to rem...
Prancer iac security scanner prevents sensitive files to be checked in to rem...
 
Cloud compliance test
Cloud compliance testCloud compliance test
Cloud compliance test
 
Azure's infrastructure as-code
Azure's infrastructure as-codeAzure's infrastructure as-code
Azure's infrastructure as-code
 

IaC Security and Continuous Compliance

  • 1. IaC Security and Continuous Compliance Prancer Enterprise is announcing that its entire cloud compliance policies repository is now open source. The repository is available on GitHub at https://github.com/prancer-io/prancer- compliance-test This move reflects Prancer’s commitment to open source technology and harness the power of community collaboration to move great ideas through the pipeline faster. These compliance policies that focused on IaC Security and live cloud resources are based on CIS, NIST 800, PCI, HIPPA, HITRUST, CSA CCM and ISO 27001 compliance standards. These policies are all in REGO Open Policy Agent (OPA) language. Prancer Enterprise platform helps companies achieve end-to-end security in the cloud by shifting security to the left and apply it early in the development process. Cloud DevOps engineers could have an early feedback on the security of the Infrastructure as Code (IaC) templates with every commit they are making to the code. Prancer Enterprise Cloud Compliance repository has more than 1000 policies both on the Infrastructure as Code (IaC) Security and post-deployment resources. This unique Cloud compliance policy repository is the most significant contribution to the open-source community based on the de facto Rego policy language. As more companies begin to rely on cloud technologies, they are also looking for ways to apply compliance to their cloud environment easily and make it a secure place for their workloads. Prancer Platform helps companies to leverage security throughout the lifecycle of their cloud deployment. Prancer Platform integrates into DevOps pipelines and provides IaC Security scan. About Prancer Prancer Enterprise (https://www.prancer.io) provides a pre-deployment and post-deployment multi-cloud security platform for Infrastructure as Code (IaC) and live cloud environments. It shifts the security to the left and provides end-to-end security scanning based on the Policy as Code concept. DevOps engineers can use it for static code analysis on IaC to find security drifts and maintain their cloud security posture with continuous compliance features.