The Fugue Platform

Fugue’s open source policy engine, powered by Open Policy Agent, enables organizations to apply security and compliance consistently across the SDLC - from infrastructure as code, to containers, to cloud.

Fugue continuously snapshots customer cloud environments to capture complete cloud resource configurations, attributes, relationships, and drift. This enables deep visualization and reporting capabilities.

Visualize your cloud and IaC environments with interactive, exportable maps. Zoom out to see the big picture and zoom in to inspect configuration details, resource relationships, and policy violations.

Secure your Terraform and CloudFormation infrastructure as code (IaC) templates at every stage of the development and deployment process, powered by the Regula policy engine. Receive fast feedback and suggested code fixes in development environments and CI/CD workflows.

Continuously evaluate your compliance posture with real-time and historical reporting, packaged for security engineers and GRC teams. Fugue supports more than a dozen compliance and security standards, including the latest CIS Benchmarks (AWS, Azure, Google, Docker, Kubernetes), NIST 800-53, PCI DSS, and SOC 2.

Track configuration changes, anomalous behavior, and vulnerabilities. Protect sensitive resources with context-aware guardrails that safely auto-remediate drift back to known-good baselines.

Fugue provides a consistent reporting interface for your entire cloud footprint with customizable and exportable dashboards and reports, and integrations with notification systems and cloud storage.

Fugue Organization Management enables centralized security visibility and policy-based governance across teams and business units using multiple cloud service providers.

Integrate Fugue security and compliance notifications with your enterprise messaging and workflow tools, including JIRA, PagerDuty, Splunk, and Slack