Tripwire has introduced enhanced security support in the cloud with Tripwire Configuration Manager. Tripwire’s latest SaaS application aims to help organisations effectively manage security across complex cloud environments. Tripwire Configuration Manager centralises the configuration monitoring of cloud assets with a single SaaS-based console. This application also helps alleviate the pressures on security teams, with an option for automated remediation. By enforcing security policies, Tripwire Configuration Manager’s automated remediation feature will reset a configuration that is out of compliance to its previous state, reducing the time that it is vulnerable to attack and offloading time-consuming manual tasks.
As technology environments shift and the security landscape evolves, Tripwire Configuration Manager reduces the complexities of cloud security. Configuration assessments immediately alert to any non-compliant settings that do not meet company policy or industry standards, such as the Center for Internet Security (CIS) AWS Foundations Benchmarks, with assigned risk scores to prioritise the most business-critical issues.
“As companies expand further into the cloud, there continues to be an influx of simple mistakes, such as misconfigurations, that can expose organisations to significant security, privacy and regulatory risks,” said Tim Erlin, vice president of product management and strategy at Tripwire. “Secure configuration management is a basic, but critical security practice, and the cloud is no exception for applying that security control. An overlooked misconfiguration can expose cloud data to the public internet, making it all too easy for attackers to quickly find the gaps in a company’s security, which can lead to devastating and costly impacts on a brand and its customers.”
Tripwire Configuration Manager will also help address the complexity of multiple cloud service providers (CSP). The application acts as the central console and common toolset for an integrated view and workflow for multiple cloud assets regardless of CSP. Tripwire Configuration Manager’s generally available capabilities today offer a quick start up for AWS, and coverage for Azure will be included in a software update planned for later this year.
Key benefits of Tripwire Configuration Manager include:
- Immediate assessment of cloud account configurations.
- Optional enforcement to minimise human-based misconfigurations.
- Prioritisation of noncompliant configurations using a risk assessment.
- Multi-cloud support to provide a single-pane-of-glass view of cloud configurations.
- Platform architecture to allow existing Tripwire on-premise products to share data.
- “Quick start” feature, using the existing cloud configuration as a baseline to expedite startup.
- Available as an ExpertOps managed service.
