Puppet announced Puppet Comply, a new product built to work with Puppet Enterprise aimed at assessing, remediating, and enforcing infrastructure configuration compliance policies at scale across traditional and cloud environments.
An overwhelming 83 percent of respondents have concerns about deploying traditional firewalls in the cloud, according to Firewalls and the Cloud, a survey of 600+ IT professionals responsible for cloud environments, conducted by Barracuda Networks.
Regarding those concerns, 39 percent named "pricing and licensing not appropriate for the cloud," and 34 percent cited "lack of integration prevents cloud automation" as their top two concerns.
Of the organizations that have adopted DevOps, DevSecOps, or CI/CD (continuous integration and continuous deployment), 93 percent have faced challenges integrating security into those practices.
When asked about challenges faced while integrating security into DevOps, DevSecOps, or CI/CD adoption, responses included:
63% - Existing security solutions don't offer integration into development environments (i.e. REST API) so are not part of code building processes.
48% - Application developers not comfortable with security.
48% - Security processes haven't changed so remain a bottleneck.
7% - Have not had any challenges.
Regarding advantages, 74 percent of respondents cited the most beneficial cloud-specific firewall capability as "Integration with cloud management, monitoring, and automation capabilities," and 59 percent cited "easy to deploy and configure by cloud developers" as the second most beneficial capability.
"A few points really stand out based on the information presented from this survey," said Tim Jefferson, VP Public Cloud, Barracuda. "We're continuing to see questions and concerns around how organizations should be approaching security with their cloud deployments, especially from larger companies. There are a number of reasons for this, but for organizations that are used to operating under traditional data center architecture, moving to the cloud will require a new way of thinking when they approach security. Using security tools specifically designed for the public cloud can actually make a business more secure than they were when they operated purely on-premises."