Fugue Now Available in AWS Marketplace
November 23, 2020

Fugue announced the availability of its SaaS product in AWS Marketplace, further simplifying the process for Amazon Web Services customers to use Fugue to bring their environments into compliance quickly, demonstrate compliance at any time, and Shift Left on cloud security.

By making Fugue available in AWS Marketplace, the company continues its mission to empower engineers to build and operate in the cloud securely with tools that are innovative and easy to adopt and use.

Fugue recently announced its next-generation cloud security and compliance (CSPM) capabilities that provide continuous cloud compliance by capturing the full configuration state of infrastructure environments over time and validating infrastructure using Fugue’s policy engine based on Open Policy Agent (OPA), the open source standard for policy-as-code. Fugue provides turnkey support and reporting for CIS AWS Foundations Benchmarks, CIS Controls/SANS Top 20, GDPR, HIPAA, ISO 27001, NIST 800-53, PCI, SOC 2, and custom enterprise policies.

“Software engineers are responsible for keeping their AWS environments secure and proving cloud compliance at all times, and Fugue is dedicated to helping them with developer-friendly tools that don’t slow them down,” said Phillip Merrick, CEO of Fugue. “With AWS Marketplace, it’s even easier for teams to get up and running with Fugue to quickly understand their AWS security posture, establish continuous compliance and reporting, and build cloud security into development and CI/CD pipelines.”

Fugue’s next-generation CSPM capabilities empower teams to continuously demonstrate compliance using:

- The data warehouse and advanced reporting tools that make it easy to demonstrate cloud compliance and analyze their AWS configuration state with their third party BI and SIEM tools.

- Policy-as-code analysis using OPA that automatically assesses the security posture of cloud infrastructure environments and delivers a detailed and prioritized path to bring them into compliance.

- Interactive, exportable visual maps that create a shared understanding across teams of the resources running in a cloud environment, including all configurations, resource relationships, and security vulnerabilities.

Fugue identifies cloud misconfiguration and compliance violations and helps teams address it with:

- Cloud configuration baselining and drift detection to understand every change made to a cloud environment and whether those changes violate policy or introduce misconfiguration vulnerabilities.

- Configuration drift reporting that includes detailed remediation feedback and API-based integrations so teams can get the notifications they need, when they need them.

- Baseline enforcement that makes security-critical configurations self-healing by automatically remediating unauthorized change — without the need for automation scripts or the risk of unintended destructive events.

Fugue empowers engineers to find and fix cloud security and compliance issues early in the software development lifecycle with:

- An API to integrate cloud security in CI/CD pipelines that automatically run policy checks on cloud infrastructure configurations prior to deploying to production.

- On-demand policy checks for dev environments to identify security issues and get the feedback needed to remediate them and move forward.

- Infrastructure-as-code validation with Regula, Fugue’s open source tool that applies the same OPA policy-as-code rules used to assess running cloud environments.

It takes 15 minutes to get up and running with Fugue.

Share this

Industry News

April 14, 2021

SmartBear has integrated TestComplete, its UI test automation tool, with BitBar, its native mobile device cloud.

April 14, 2021

Elastic announced an expanded strategic partnership with Confluent to deliver the best integrated product experience to the Apache Kafka and Elasticsearch community.

April 14, 2021

Threat Stack announced its ability to support AWS Graviton2-based instances through the Threat Stack Cloud Security Platform.

April 13, 2021

Broadcom and Google Cloud announced a strategic collaboration to accelerate innovation and strengthen cloud services integration within the core software franchises of Broadcom.

April 13, 2021

Nylas announced the launch of Components, JavaScript UI/UX solutions that allow developers to bring productivity features to market faster without needing to design front-end elements from scratch.

April 13, 2021

Perforce Software announces its new version control desktop client — Helix Sync — enabling non-coders such as artists and designers to version digital assets, with a simple drag-and-drop UI.

April 12, 2021

ShiftLeft introduced ShiftLeft CORE, a unified code security platform.

April 12, 2021

GrammaTech announced a new version of its CodeSonar SAST (static application security testing) product that helps developers build safer and more secure code without disrupting workflows.

April 12, 2021

Panaya announced a strategic partnership with Being Guided, a Salesforce Consulting Partner, specializing in the CRM and Salesforce ecosystem, to bring Panaya's ForeSight solution to a wider audience.

April 08, 2021

Palo Alto Networks announced the second generation of Checkov, the static analysis tool for infrastructure as code (IaC).

April 08, 2021

Postman now allows any team with up to three members to collaborate in Postman with unlimited shared workspaces and unlimited shared requests at no cost.

April 08, 2021

Taos, an IBM company, has announced 24x5 managed service availability.

April 07, 2021

VMware unveiled expanded cloud workload protection capabilities to deliver security for containers and Kubernetes.

April 07, 2021

Catapult CX is launching the DevOps Institute’s (DOI) Assessment of DevOps Capabilities (ADOC).

April 07, 2021

Equinix announced that Tinkerbell, an all-in-one open source bare metal provisioning platform, has added significant new features since joining the Cloud Native Computing Foundation (CNCF) Sandbox program.