Skip to content

    Latest Posts

    Introducing Fugue's SaaS Offering: Continuous Cloud Infrastructure Compliance

    Drew Wright

    Enterprises operating at scale on clouds like Amazon Web Services (AWS) need assurance that their cloud infrastructure always adheres to compliance policy and never drifts. But unlike the datacenter, today’s cloud environments are API-driven and highly dynamic. When change is the only constant, enforcing continuous compliance is a major challenge. Failure here can result in costly fines, or worse—a critical data breach.

    Read More

    Fugue at AWS re:Invent 2018: Next Generation Cloud Security & Compliance Automation

    Drew Wright

    What better way to shake off the Thanksgiving food coma than the annual tradition of heading to Las Vegas forAWS re:Invent; which just keeps getting significantly bigger every year! Of course Fugue will be there again this year showcasing how our customers are ensuring the security and compliance of their AWS infrastructure andautomatically remediating cloud misconfigurationto prevent data breaches and system downtime events.

    Read More

    Announcing our Partnership with In-Q-Tel (IQT)

    Drew Wright

    Since its founding, Fugue has set out to transform how cloud infrastructure is kept safe and secure. Today, we’re thrilled to announce our strategic partnership and development agreement withIn-Q-Tel (IQT)to help advance its mission for U.S. government agencies.

    Read More

    Introducing Fugue Compliance Suite: Stay Compliant in the Cloud

    Diem Shin

    We are thrilled to announce that the Fugue Compliance Suite is available today. The Compliance Suite is a set of validation libraries for provisioning and orchestrating infrastructure with Fugue. The prepackaged libraries help to enforce security and regulatory controls specified in compliance frameworks such as NIST 800-53, HIPAA, and GDPR, as well as best practices such as the AWS CIS Benchmarks.

    Read More

    A Day in the Life of a Cloud Misconfiguration

    Fugue Team

    Cloud infrastructure misconfiguration has emerged as the number one cause of data breaches in the cloud. Rather than application software vulnerabilities, it’s actually misconfigured network settings, firewall rules, storage access policies, and other cloud resources that put our data at most risk. We’ve talked a lot about the risk of cloud misconfiguration and why it’s critically important to have a Mean Time to Remediation (MTTR) for cloud infrastructure misconfiguration that’s measured in minutes, not hours or days. But why are cloud misconfiguration MTTRs more often measured in hours or days? And how many man-hours are teams wasting in their attempts to manage this problem? We work with a wide variety of enterprises using cloud at scale—from federal agencies to Fortune 500...

    Read More

    Why I Joined Fugue

    Phillip Merrick

    I’ve now been in the role of CEO here at Fugue for a number of weeks, and thought it might be worthwhile to lay out my reasons for joining this fantastic company. First off, I’d like to say a big “thank you” to the wonderful staff and customers of Fugue who have given me a very warm and enthusiastic welcome. Not only that, they have graciously and patiently entertained my many, many questions. I’ve spent the past 10 or more years helping lead innovative and fast-growing cloud and SaaS companies such as VisualCV (an early AWS customer) and SparkPost. Before that—at webMethods—I helped leading companies like Dell and Bank of America utilize our pioneering web services software in early cloud applications. One of the common concerns we had at all these companies was ensuring that the...

    Read More

    Cloud Security and Your DevOps Pipeline

    Richard Park

    DevOps provides IT enterprises with the ability to rapidly iterate on smart, fast software deployments. Relying on powerful version control and build tools like Github and Jenkins enables DevOps teams to save time and money by including development and operations in a single automated pipeline. However, in some DevOps environments, security is often neglected or avoided because of the perception that the security team will introduce inefficiencies and dramatically slow the pace of development. Bypass the unnecessary risks of this approach by integrating security directly into your DevOps pipeline. DevSecOps Provides Agile Security DevSecOps is established by placing security controls in every phase of your pipeline. Common best practices include: Training: Educate engineers to...

    Read More

    Fugue Welcomes Phillip Merrick, Our New CEO

    Josh Stella

    In late November of 2017, I informed Fugue's Board that I intended to lead a search for a new CEO. We had a substantial amount of money on the balance sheet, some really impressive customers, a solid product, and a highly motivated team - many of the things needed to attract a world class CEO. My passion has always been for technology and team building, and it's been an amazing 4 years at the helm through the R&D and engineering phases of the company and well into the go-to-market execution phase, but I've known since founding Fugue that someday I'd look for a partner to fulfill Fugue's potential, and the time is right. Growing Fugue is now about execution in the market, building out great sales and marketing functions, and scaling the business. We've put together great teams to...

    Read More

    Revisiting Unit Testing and Mocking in Python

    Drew Wright

    My previous blog post, Python Mocking 101: Fake It Before You Make It , discussed the basic mechanics of mocking and unit testing in Python. This post covers some higher-level software engineering principles demonstrated in my experience with Python testing over the past year and half. In particular, I want to revisit the idea of patching mock objects in unit tests. Patching External Clients Clients in this post refer to any objects that create side effects, such as disk or network I/O. Consider a class, CloudCreator, that receives messages over HTTP, generates some side effects by creating cloud infrastructure, and sends messages over HTTP in response: import http_client class CloudCreator : def __init__(self) : self.network_client =...

    Read More

    Securing AWS CloudFormation Stacks with Fugue

    Fugue Team

    Launched in 2011, AWS CloudFormation was a game changer because it was one of the first template-based, infrastructure-as-code (IaC) tools that provided the ability to express the full cloud infrastructure stack as configuration files. It wasn’t limited to the OS layer like traditional configuration management tools. However, organizations that operate on AWS under strict security rules and compliance regimes (i.e., HIPAA, PCI, NIST 800-53) need to make sure their infrastructure is created in accordance with the applicable security and regulatory policies—and stays aligned in the face of constant change. The Risk of Cloud Misconfigurations, Drift, and Policy Violations IaC tools like CloudFormation (CF) were not designed to address security and compliance comprehensively, and they...

    Read More
    Fugue Developer

    Free Cloud Security for Engineers

    • Visualize your cloud infrastructure
    • Run policy checks and get feedback
    • Detect change and eliminate misconfiguration
    GET STARTED CONTACT SALES