DevSecOps Solutions

REST API Gateway to Multi-Cloud-Native Security Operations

Anything one can do in the Cloudvisory UI is also doable via the Cloudvisory REST API, which allows DevSecOps teams to integrate functions into existing automated build pipelines. Cloudvisory authenticates, authorizes & encrypts (HTTPS) all connections to the Cloudvisory UI and/or API, providing a secure API gateway into all your multi-cloud security assets, configurations & events.

Build Your Own Custom Compliance Checks

Extend the Cloudvisory Compliance Framework to meet any compliance assurance need by writing your own custom Compliance Checks, where a given check implements the standard (golang) interface for Cloudvisory Compliance Checks. Custom checks benefit from standard features for Compliance Checks, including the ability to customize the run behavior at the Compliance Check and/or Compliance Group level. Incorporate custom compliance assurance workflows into standard Risk Analysis features built into Cloudvisory.

Functional Tests for Cloud Security Policy Management

Use Cloudvisory to automatically test for configurations and events that violate organization policy ensuring violations "fail early" in the DevOps and/or DevSecOps automation pipeline(s).

Unit Tests for Custom Compliance Checks

Cloudvisory provides examples - and example unit tests - for Custom Compliance Checks which implement the standard (golang) interface for Cloudvisory Compliance Checks. Ensure new and modified Compliance Checks meet basic requirements via standard build (CI/CD) pipelines.

Secure Cloud Provisioning

Allow for central Security oversight of de-centralized, automated DevOps processes. Deploy with confidence, knowing that Cloudvisory automatically detects security policy violations while keeping an audit trail of historical changes to security context. Trust that security deficiencies can be detected early in the DevSecOps pipeline; Verify that security deficiencies stay remediated in Production.

Deploy Your own Custom Compliance Checks. Once Custom Compliance Checks meet testing requirements, use Cloudvisory automation to orchestrate the deployment of your custom checks throughout the Cloudvisory cluster. Regardless of the size (1 to N nodes) and location (SaaS, on-premise) of the cluster, Cloudvisory makes it easy to update Compliance Check definitions with zero downtime.

Automated Security Platform Deployment Cloudvisory makes it easy to deploy & manage multiple Cloudvisory deployments, providing native support for AGILE testing of Custom Compliance Checks and/or Cloudvisory cluster upgrades. Leverage the power and reliability of a distributed, big-data cluster in Production while using the same automation toolset to setup single-node Cloudvisory deployments for Dev/QA.

Agentless Cloud Security Monitoring

Cloudvisory continuously discovers multi-cloud assets, context, controls & events through cloud-native API integrations. Easily monitor near-real-time and historical security data for all of your cloud environments – without using any agents on any workloads – from a single-pane.

Security Event Data Hub

Leverage the big data architecture of Cloudvisory. Stream security events from the Cloudvisory Kafka cluster to a SIEM – or other data analytics engine – of your choice. Query multi-cloud security events through a Cloudvisory API based on Elasticsearch.

Configure Alerts for Security Events When you know that which you seek – create an alert, there, and ye shall find. Save time by setting Compliance Check defaults (i.e. alert destination, check frequency, check severity) at the Compliance Group level. Customize alerting behavior for specific Compliance Checks. Automatically learn alert recipient list through cloud metadata, allowing for automatic notification of asset owners and stakeholders.

Multi-cloud Security Data Analytics

When you know not what you seek – use Cloudvisory's ad-hoc audit interface to drill-down and pivot on a rich set of contextual, multi-cloud security data. When aggregations and trends are more important than individual events, use the Cloudvisory Dashboard to assess the current and historical inventories of assets and risks in your multi-cloud environment. There you can slice and dice the overall data set over custom time intervals and utilize built-in data aggregations and filters.

Feed Your SIEM Beast

Cloudvisory provides a rich source of contextual security data for multi-cloud assets, configurations & events. Feed your analytics engine with the complete historical record of Cloudvisory asset discovery events, compliance check results, internal audit logs, processed network flows & machine learning recommendations.

Machine Learning for Policy Improvements

In dynamic environments, standing still is losing ground. Use Cloudvisory to continuously learn improvements to desired state policies, providing actionable recommendations that ensure "golden state" policies stay golden over time.

Extendable Compliance Framework

Extend Cloudvisory's automated compliance engine through several types of "custom" Compliance Checks. Enable and customize over 1100 built-in Compliance Checks; Convert ad-hoc queries into recurring Compliance Checks; Reference our standard golang interface for creating your own compliance checks (in golang) with ease.