The Cloudvisory Security Platform (CSP) provides an array of integrations and solutions to enhance and empower DevSecOps practices for hybrid- and multi-cloud organizations. Whether you call it DevSecOps, SecDevOps, or any other name – CSP allows you to integrate security monitoring & management into each phase of the DevOps lifecycle.
REST API Gateway to Multi-Cloud-Native Security Operations
Anything one can do in the CSP UI is also doable via the CSP REST API, which allows DevSecOps teams to integrate CSP functions into existing automated build pipelines. CSP authenticates, authorizes & encrypts (HTTPS) all connections to the CSP UI and/or API, providing a secure API gateway into all your multi-cloud security assets, configurations & events.
Build Your Own Custom Compliance Checks
Extend the CSP Compliance Framework to meet any compliance assurance need by writing your own custom Compliance Checks, where a given check implements the standard (golang) interface for CSP Compliance Checks. Custom checks benefit from standard features for Compliance Checks, including the ability to customize the run behavior at the Compliance Check and/or Compliance Group level. Incorporate custom compliance assurance workflows into standard Risk Analysis features built into CSP.
Functional Tests for Cloud Security Policy Management
Use CSP to automatically test for configurations and events that violate organization policy, ensuring violations "fail early" in the DevOps and/or DevSecOps automation pipeline(s).
Unit Tests for Custom Compliance Checks
Cloudvisory provides examples – and example unit tests – for Custom Compliance Checks which implement the standard (golang) interface for CSP Compliance Checks. Ensure new and modified Compliance Checks meet basic requirements via standard build (CI/CD) pipelines.
Secure Cloud Provisioning
Allow for central Security oversight of de-centralized, automated DevOps processes. Deploy with confidence, knowing that CSP automatically detects security policy violations while keeping an audit trail of historical changes to security context. Trust that security deficiencies can be detected early in the DevSecOps pipeline; Verify that security deficiencies stay remediated in Production.
Deploy Your own Custom Compliance Checks Once Custom Compliance Checks meet testing requirements, use CSP automation to orchestrate the deployment of your custom checks throughout the CSP cluster. Regardless of the size (1 to N nodes) and location (SaaS, on-premise) of the CSP cluster, Cloudvisory makes it easy to update Compliance Check definitions with zero downtime for CSP.
Automated Security Platform Deployment Cloudvisory makes it easy to deploy & manage multiple CSP deployments, providing native support for AGILE testing of Custom Compliance Checks and/or CSP cluster upgrades. Leverage the power and reliability of a distributed, big-data cluster in Production while using the same automation toolset to setup single-node CSP deployments for Dev/QA.
Agentless Cloud Security Monitoring
CSP continuously discovers multi-cloud assets, context, controls & events through cloud-native API integrations. Easily monitor near-real-time and historical security data for all of your cloud environments – without using any agents on any workloads – from a single-pane-of-glass.
Security Event Data Hub
Leverage the big data architecture of the Cloudvisory Security Platform (CSP). Stream security events from the CSP Kafka cluster to a SIEM – or other data analytics engine – of your choice. Query multi-cloud security events through a CSP API based on Elasticsearch.
Configure Alerts for Security Events When you know that which you seek – create an alert, there, and ye shall find. Save time by setting Compliance Check defaults (i.e. alert destination, check frequency, check severity) at the Compliance Group level. Customize alerting behavior for specific Compliance Checks. Automatically learn alert recipient list through cloud metadata, allowing for automatic notification of asset owners and stakeholders.
Multi-cloud Security Data Analytics
When you know not what you seek – use CSP's ad-hoc audit interface to drill-down and pivot on a rich set of contextual, multi-cloud security data. When aggregations and trends are more important than individual events, use the CSP Dashboard to assess the current and historical inventories of assets and risks in your multi-cloud environment, slicing and dicing the overall data set over custom time intervals and using built-in data aggregations and filters.
Feed Your SIEM Beast
CSP provides a rich source of contextual security data for multi-cloud assets, configurations & events. Feed your analytics engine with the complete historical record of CSP asset discovery events, compliance check results, internal (CSP) audit logs, processed network flows & machine learning recommendations.
Machine Learning for Policy Improvements
In dynamic environments, standing still is losing ground. Use CSP to continuously learn improvements to desired state policies, providing actionable recommendations that ensure "golden state" policies stay golden over time.
Extendable Compliance Framework
Extend CSP's automated compliance engine through several types of "custom" Compliance Checks. Enable and customize over 1100 built-in Compliance Checks; Convert ad-hoc queries into recurring Compliance Checks; Reference our standard golang interface for creating your own compliance checks (in golang) with ease
© 2020 Cloudvisory, Now a part of FireEye, Inc.
