Puppet Delivers New Product for Vulnerability Remediation
August 21, 2019

Puppet announced its first vulnerability remediation solution, Puppet Remediate, with initial channel partners, Bitbone and Fishtech.

"The vulnerability management process most organizations use today is not sustainable for reducing the security risk of external attacks. There is a major gap between sophisticated scanning tools that identify vulnerabilities and the fragmented and manual, error-prone approach of fixing these vulnerabilities,” said Matt Waxman, Head of Product at Puppet. “Puppet Remediate closes this gap giving IT the insight they need to end the current soul-crushing work associated with vulnerability remediation to ensure they are keeping their organization safe.”

Puppet Remediate dramatically reduces the time from vulnerability detection to remediation across a company’s infrastructure through key integrations with security partners to unify infrastructure and vulnerability data, quick identification of what infrastructure resources are impacted by vulnerabilities, and the ability to take immediate action to remediate vulnerable packages without requiring any agent technology on the vulnerable systems on both Linux and Windows through SSH and WinRM.

Key features of Puppet’s latest product include:

- Shared vulnerability data between Security and IT Ops. Puppet Remediate unifies infrastructure data with vulnerability data from Tenable, Qualys and Rapid7 to prioritize vulnerabilities. This also allows IT Ops to get access to vulnerability data in real-time, reducing delays and eliminating risks related to manual handover of data.

- Risk-based prioritization. IT can prioritize the most mission-critical systems and identify vulnerabilities within the organization's systems to separate signal from noise based on infrastructure context. With a dashboard that lists the most critical vulnerabilities, IT Ops can quickly learn what assets have vulnerabilities at a glance and determine what to fix first.

- Agentless remediation. In 2018, 8 out of the Top 10 CVEs reported could be remediated with a package update. Puppet Remediate includes four pre-built tasks, including the ability to update packages. Remediate can also load modules from the Puppet Forge where a vast community of IT operators, security analysts, developers, and partners share ready-to-automate solutions as Bolt Tasks. IT Ops can take immediate action to remediate a vulnerability without leaving the application or having to use a CLI or write scripts—and, without requiring any agent technology on the vulnerable systems.

Initial channel partners were selected based on their established infrastructure and InfoSec practices and ability to bridge the gap that exists between security and IT practices in enterprises. The channel partners already sell into the vulnerability assessment market with products from Qualys, Rapid7 and Tenable.

"Puppet Remediate offers real added value with its new functions to our customers,” said Sebastian Scheuring, CEO Bitbone AG. “It drastically automates the workflow of vulnerability remediation through taking out the manual, mundane and error-prone steps that are required to remediate vulnerabilities. Continuous scans, remediation tasks and short cycles of update processes significantly increase the security level of IT environments."

Share this

Industry News

July 09, 2020

ShiftLeft released a new version of NextGen Static Analysis (NG SAST), including new workflows, purpose-built for developers that significantly improve security, while enhancing productivity.

July 09, 2020

RunSafe Security announced a partnership with JFrog that will enable RunSafe to supercharge binary protections via a simple plugin that JFrog users can deploy within their Artifactory repositories and instantly protect binaries and containers.

July 09, 2020

LeanIX closed $80 million in Series D funding led by new investor Goldman Sachs Growth.

July 08, 2020

Afi.ai introduced Afi Data Platform, a cloud-based replication and resiliency service that helps to monitor, predict downtime and recover K8s applications.

July 08, 2020

D2iQ announced the release of Conductor, a new interactive learning platform that enables enterprises to access hands-on cloud native courses and training.

July 08, 2020

SUSE entered into a definitive agreement to acquire Rancher Labs.

July 07, 2020

Micro Focus announced AI-powered enhancements to the intelligent testing capabilities of the UFT Family, a unified set of solutions designed to reduce the overall complexity of automating the functional testing processes.

July 07, 2020

Push Technology announced the launch of a new Service API capability for Diffusion Cloud, Push’s Real-Time API Management Cloud Platform.

July 07, 2020

Lightrun exited stealth and announced $4M in seed funding for the first complete continuous debugging and observability platform for production applications.

July 01, 2020

JFrog announced the launch of ChartCenter, a free, security-focused central repository of Helm charts for the community.

July 01, 2020

Kong announced a significant upgrade to open source Kuma, Kuma 0.6, available today.

July 01, 2020

Compuware Corporation, a BMC company, announced new capabilities that further automate and integrate test data and test case execution, empowering IT teams to achieve high-performance application development quality, velocity and efficiency.

June 30, 2020

Couchbase announced the general availability of Couchbase Cloud, a fully-managed Database-as-a-Service (DBaaS).

June 30, 2020

Split Software announced new capabilities designed to accelerate the adoption of feature flags in large-scale organizations.

June 30, 2020

WhiteHat Security announced a discounted Web + Mobile Application Security bundle to help organizations secure the digital future.