DEVOPSdigest

Accurics launched a channel program designed for partners who share a developer-first approach to cloud security, in tune with the era of Infrastructure as Code (IaC).

As new cloud native technologies accelerate innovation, bringing both benefits and risk, the Accurics channel program empowers partner organizations to help clients codify security throughout the development lifecycle, facilitating self-healing cloud native infrastructure and ensuring end-to-end security in all cloud applications.

“The Accurics channel program reflects the fundamental principle that a developer-first approach is vital for optimizing cloud security,” said Alex Ausmanas, VP of Sales and Partnerships at Accurics. “Our solution reduces risk by implementing security guardrails early in the development lifecycle, and this strategy takes those benefits even further. We’re proud to be joined by some of the greatest innovators in the channel arena who are enabling digital transformation for customers, and we’re proud to serve them through a truly differentiated solution supporting cyber resilience.”

Accurics supports both developer and security workflows. When fixes are required, the technology goes further by remediating issues through developer workflows. This ensures that the Infrastructure as Code remains the single source of truth, and allows teams to deploy as quickly as fixes are implemented without worrying about overwriting runtime configuration changes. This enables better understanding of security risks and drives next-generation capabilities related to breach path identification, self-healing risks and more.

“Our mission is to help our clients #bebetter by reducing their corporate risk through increased visibility across their cybersecurity ecosystem,” said Shaun Bank, Co-Founder and Chief Executive Officer at ImagineX Consulting. “The Accurics approach to the complexities of cloud native infrastructure is perfectly designed to help companies secure new tools and modern delivery methods. We welcome this exciting technology to our portfolio to better secure our clients as they innovate in the cloud.”

The Accurics solution builds on a developer-first philosophy to complement a comprehensive offering. It features:

- Policy as Code: Accurics provides 1,800-plus policies across compliance standards, such as CIS Benchmarks, SOC 2, PCI DSS, HIPAA, NYDFS, and GDPR, so that policy guardrails can be enabled in minutes. During development, the technology scans IaC to detect violations, and integrates with CI/CD tools to block risky builds. The same policies are assessed in runtime as users make changes to infrastructure configurations.

- Security as Code: Accurics generates a real-time topology across all infrastructure by identifying resources, configurations and dependencies, then models threats using data such as threat feeds, trust boundaries and IAM privileges to identify potential breach paths in code and runtime.

- Drift as Code: Accurics enables organizations to establish a secure baseline through IaC during development, then continuously monitors the cloud infrastructure to detect configuration changes and assesses them for risk.

- Remediation as Code: Accurics automatically generates code to resolve a misconfiguration and generates a pull request. The appropriate developer will receive notification and simply needs to review, approve, and merge the code. Alternately, organizations may elect to override insecure configurations with secure defaults to self-heal cloud infrastructure.