DEVOPSdigest

Chef announced new products that automate change management for the entire application and infrastructure stack.

Chef’s workflow automation product Chef Delivery, initially made available as an invitation-only program in April, is now generally available and integrates with the new Chef Compliance offering. Together, they automate infrastructure, runtime environments, applications and compliance policies. These new products provide a proven process for managing complex, end-to-end changes and enable enterprises to deliver value through software faster and with maximum safety.

Chef’s new compliance capabilities enable users to automate the assessment and remediation of IT infrastructure. Chef Compliance is built on technology from VulcanoSec, a security software company based in Germany, which Chef recently acquired. Chef is integrating Chef Compliance with Chef Delivery to bring compliance into the DevOps workflow.

“As organizations in all industries rapidly evolve their business models around technology, they are struggling to develop software at velocity, while also meeting complex compliance and security obligations,” said Barry Crist, CEO of Chef. “Chef Delivery and our new compliance capabilities provide a demonstrated DevOps workflow for enterprises that want both speed and security.”

The current compliance landscape includes increasingly detailed requirements. For organizations in highly regulated sectors, such as healthcare, financial services and government, detailed compliance impedes the ability to innovate. However, by specifying compliance requirements as code, verification tasks that were previously manual and reactive can be embedded as tests in an automated workflow. Together, Chef Delivery and Chef Compliance automate the analysis, specification, testing, and certification of infrastructure and enable enterprises to more easily apply regulatory requirements at any scale.

Following Chef’s recent Series E funding round, the company is investing in research and development to enable IT, security, and business teams to best collaborate on delivering innovation safely and at velocity. By releasing Chef Delivery and bringing VulcanoSec’s audit technology to the Chef platform, Chef now provides:

- Comprehensive Compliance Coverage: Using VulcanoSec’s innovative technology, Chef Compliance includes compliance profiles – audit rules in the form of code – to validate that a production node is properly configured. Any necessary remediation can then be systematically applied with Chef’s automation framework.

- Powerful Audit Framework: Chef Compliance users can collaborate on, version, and deploy policy as code within a software development pipeline, fully integrating compliance into high-velocity software delivery. Because the tests are automated, they can be applied repeatedly to ensure even minor changes won’t break any compliance rules.

- Unified Workflow: Chef is integrating its new compliance functionality, as well as its sophisticated reporting feature, Chef Analytics, with Chef Delivery, providing a shared pipeline and proven workflow for software development that quickly and safely takes code from a developer’s or operations engineer’s workstation through build, test and production.

To enable enterprises to attain the skills and cultural patterns necessary to successfully adopt DevOps, Chef today introduced a new Enterprise Transformation practice that offers executive training and ongoing coaching for organizational change. The new practice is led by Chef VP and Chief Architect, Justin Arbuckle, who led GE Capital’s DevOps initiative three years ago and has replicated this success for organizations such as Standard Bank since joining Chef in 2013. Consulting engagements are available to all organizations and are priced and tailored to fit each company’s individual needs.

Chef Compliance is currently available as part of Chef Premium subscriptions. Chef Delivery is currently available as part of the Chef Premium + Delivery subscription or as standalone subscription with licensing per developer seat.