DEVOPSdigest

Puppet by Perforce announced Puppet Comply 2.14.0 and key updates to its Windows and Linux Compliance Enforcement Modules (CEM) — both extensions of Puppet Enterprise’s secured infrastructure capabilities.

Key features of the update include greater visibility into a company’s complete multi-cloud infrastructure footprint, updated alignment with the latest CIS Benchmarks, and role-based access controls.

“With cybersecurity expertise in high demand and a lack of professionals to fill this space, everyone from developers to operations needs to make security and compliance a priority. It’s not just a nice-to-have for Day 1 and Day 2 operations – it’s a must,” said Claire McDyre, Product Manager, Puppet by Perforce. “Puppet compliance assessment and remediation automates and simplifies alignment with consensus regulatory standards and security processes by breaking down silos between teams. The solution allows teams to define their safest configurations against expert-declared security standards, empowering them to enforce those configurations continuously and stay ready to share proof of compliance when audit time comes.”

How Puppet Comply and CEM Fit Into Day 1 and Day 2 Operations:

- Provides compliance verification through policy as code during Day 1 operations to ensure servers are initially provisioned with a secure configuration.

- Enforces servers desired state using popular security standards like CIS Benchmarks and DISA STIGs as a baseline to achieve compliance with compliance regulations and frameworks.

- Frequently reevaluates and remediates configuration drift during Day 2 operations, guaranteeing continual adherence to mandated baselines.

Puppet’s compliance products are a continued investment to help streamline the process of bringing infrastructure into compliance to help operators:

- Decrease the financial and security risks associated with non-compliance.

- Increase organization-wide visibility into infrastructure compliance and security status and predictability of resolution.

- Reduce the time and resources needed to interpret scans, remediate compliance failures, and prepare for audits.

- Eliminate effort associated with keeping up with evolving standards.

- Increase the percentage of infrastructure that is fully compliant.

Puppet Comply offers continuous compliance monitoring with a holistic status view across hybrid infrastructure. Puppet’s Compliance Enforcement Modules (CEM) provide turnkey compliance remediation and enforcement of policy-as-code aligned with the latest CIS Benchmarks and DISA STIGs. Puppet Comply and CEM are extensions of Puppet Enterprise.