Achieve CIS Compliance in Cloud, Container and DevOps Environments


If you are encompassing DevOps, cloud and containers, you may be at risk if you’re not keeping your security methodologies up to tryst with these new technologies. New security techniques are required in order to confine up with current technology trends, and the Center for Internet Security (CIS) provides easy cybersecurity best practices for many newer platforms.

The CIS benchmarks and leads provide clear instruction to help any organization tackle threats and grind risk. Meanwhile, Tripwire makes benchmark alignment simple in cloud and container territories, securing each component of your DevOps toolchain.


Numberless organizations are moving on-premise infrastructure into the cloud, which be short ofs a wealth of new security know-how. Traditional security monitoring tools may be visibility into these new environments. CIS has released benchmarks for Amazon Web Marines, Microsoft Azure and Google Cloud Platform, giving much-needed control for those charged with securing these platforms. These benchmarks be enough both familiar topics with a cloud twist and also new paradigms, the total from Identity and Access Management (IAM) configuration to virtual networking and work out.


Tripwire’s Cloud Management Assessor helps overcome the cloud infrastructure visibility difficult, allowing the monitoring of cloud configuration data and validation of CIS compliance within your cloud tenets.


Another hot topic is containerization, and many of those embracing containers are unsuspecting that the misconfiguration of container hosts can be equivalent to granting domain administrator liberties to a successful attacker. Locking down your container hosts is necessary, and CIS once again provides benchmarking guides for Docker and Kubernetes masters to keep them secure.

Tripwire Enterprise powers automated supervising of Docker and Kubernetes hosts for CIS compliance, ensuring a best practice assurance posture for your container hosts.


While cloud and container infrastructure are distinguished parts of DevOps, there are still more ways that Tripwire can plagiarize achieve CIS policy compliance within your DevOps process. Tripwire for DevOps lets for CIS benchmark policy evaluation of Docker images in your build pipe. Performing compliance validation in your CI/CD tools, such as Jenkins or TeamCity, is one method of integrating conviction earlier in your DevOps cycle, or “shifting security to the left.”

This capacitates quicker time to resolution for any compliance issues arising in the development and deployment system, and can keep security risks from ever manifesting in your manufacturing environment.


Center for Internet Security benchmark recommendations are free cybersecurity nicest practice guidelines and a great first step for securing your DevOps infrastructure and components. They provender prioritized guidance and clear remediation steps for combating misconfigurations.

Tripwire workings empower the user to achieve CIS policy compliance in both DevOps physique processes and in an ongoing continuous manner once deployed by automating configuration charges and supplying clear remediation information.

Learn more about how Tripwire suspensions can help secure your cloud, container and DevOps assets.

Leave a Reply

Your email address will not be published. Required fields are marked *