Fugue Introduces Next-Generation CSPM
October 14, 2020

Fugue announced next-generation cloud security posture management (CSPM) capabilities to help customers bring their cloud infrastructure into compliance and demonstrate that cloud environments adhere to enterprise security policies.

The new features leverage Fugue’s cloud state machine, which captures every resource configuration over time in a cloud environment, and Fugue’s policy engine based on Open Policy Agent (OPA), the open source standard for policy-as-code.

Fugue’s cloud state machine and OPA-based policy engine provide customers with continuous visibility into the full configuration state and security posture of their entire cloud footprint. With Fugue’s new data warehouse, teams can leverage this data to use with their third party business intelligence (BI) and security information and event management (SIEM) tools to gain better insights into their cloud environments. New integrations with Google Cloud’s Looker Business Intelligence Platform access data from the data warehouse to deliver advanced out-of-the-box reporting and data analytics capabilities that help teams understand their cloud security posture in full context while radically streamlining compliance audits.

“Today’s dynamic and complex enterprise cloud environments — and the modern attacks that put them at risk — have far outpaced the ability of repurposed datacenter tools to keep data secure,” said Phillip Merrick, CEO of Fugue. “Cloud is 100% software-defined, making cloud security a software engineering problem, not a traditional security analysis one. Fugue’s next-generation CSPM takes a software engineering approach to cloud security so our customers can get their cloud configurations into compliance quickly and ensure they stay that way — without ever slowing them down.”

Fugue’s next-generation CSPM capabilities empower teams to continuously demonstrate compliance using:

- The data warehouse that provides access to the complete configuration and compliance history of their cloud infrastructure environments for use with third party BI and SIEM tools.

- Advanced reporting with Google Looker that makes it easy to demonstrate cloud compliance to management and auditors — including historical audits.

- Configuration state modeling of every resource, relationship, and configuration attribute to understand cloud security in full context and over time.

- Policy-as-code analysis using OPA that automatically assesses the security posture of cloud infrastructure environments and delivers a detailed and prioritized path to bring them into compliance.

- Interactive, exportable visual maps that create a shared understanding across teams of what’s running in a cloud environment, including all resource relationships and security vulnerabilities.

Fugue identifies cloud misconfiguration and compliance violations and helps teams eliminate it with:

- Cloud configuration baselining and drift detection to understand every change made to a cloud environment and whether those changes violate policy or introduce misconfiguration vulnerabilities.

- Configuration drift reporting that includes detailed remediation feedback and API-based integrations so teams can get the notifications they need, when they need them.

- Baseline enforcement that makes security-critical configurations self-healing by automatically remediating unauthorized change — without the need for automation scripts or the risk of unintended destructive events.

Fugue empowers engineers to find and fix cloud security and compliance issues early in the software development lifecycle with:

- On-demand policy checks for dev environments to identify security issues and get the feedback needed to remediate them and move forward.

- An API to integrate cloud security in CI/CD pipelines that automatically run policy checks on cloud infrastructure configurations prior to deploying to production.

- Infrastructure-as-code validation with Regula, Fugue’s open source tool that applies the same OPA policy-as-code rules used to assess running cloud environments.

Fugue provides turnkey support for industry compliance standards including CIS Foundations Benchmarks, GDPR, HIPAA, ISO 27001, NIST 800-53, PCI, and SOC 2. Fugue supports custom enterprise policies using OPA and provides the Fugue Best Practices framework to protect against advanced misconfiguration exploits that compliance standards miss.

Fugue offers Enterprise and Team plans under a 30-day free trial, and the free Fugue Developer plan for individual engineers. It takes 15 minutes to get up and running with Fugue.

Share this

Industry News

August 18, 2022

GitHub Enterprise Server 3.6 is now generally available.

August 18, 2022

Opsera announced the availability of Opsera GitCustodian.

August 18, 2022

CircleCI announced the general availability of the CircleCI Visual Configuration Editor, an all-in-one open source project for configuration editing, including creating component definitions and usages.

August 17, 2022

Cloudera announced the launch of Cloudera Data Platform (CDP) One, an all-in-one data lakehouse software as a service (SaaS) offering that enables fast and easy self-service analytics and exploratory data science on any type of data.

August 17, 2022

Prosimo introduced a new NetDevOps Infrastructure-as-Code (IaC) Toolkit that enables enterprises to accelerate the deployment of cloud networking.

August 17, 2022

Aqua Security announced the addition of cloud security posture management (CSPM) capabilities to the open source tool Aqua Trivy.

August 16, 2022

Canonical welcomes the .NET development platform, one of Microsoft’s earliest contributions to open source projects, as a native experience on Ubuntu hosts and container images, starting in Ubuntu 22.04 LTS.

August 16, 2022

Veracode announced the launch of the Veracode Velocity Partner Program.

August 16, 2022

Render announced a new monorepository feature that enables its customers to keep all of their code in one super repository instead of managing multiple smaller repositories.

August 15, 2022

Gadget announced Connections, a major new feature that gives app developers access to building blocks that enable them to build and scale ecommerce apps in a fraction of the time, at a fraction of the cost.

August 15, 2022

Opsera is on the Salesforce AppExchange to help enterprise customers shorten software delivery cycles, improve pipeline quality and security, lower operations costs and better align software delivery to business outcomes.

August 15, 2022

Virtusa Corporation earned the DevOps with GitHub on Microsoft Azure advanced specialization, a validation of a services partner's deep knowledge, extensive experience and proven success in implementing secure software development practices applying DevOps principles and using Azure and GitHub solutions.

August 15, 2022

Companies looking to reduce their cloud costs with automated optimization can now easily procure CAST AI via Google Cloud Marketplace using their existing committed spend.

August 11, 2022

Granulate, an Intel Company, announced the upcoming launch of its latest free cost-reduction solution, gMaestro, a continuous workload and pod rightsizing tool for Kubernetes cost optimization.

August 11, 2022

Rezilion announced the availability of MI-X, a newly created open-source tool developed by Rezilion's vulnerability research team.