Frederick, MD – November 15, 2018 – Fugue, the company automating enterprise cloud security and compliance enforcement to prevent data breaches and policy violations due to misconfiguration, today announced the release of Fugue Risk Manager. A new Software-as-a-Service (SaaS) solution, Fugue Risk Manager is designed to make it easier for enterprises to identify compliance issues in their cloud environments and prevent them from reoccurring.
Fugue Risk Manager inspects cloud infrastructure environments and identifies resource configuration issues for common compliance regimes, including AWS CIS Benchmarks, NIST 800-53 Rev. 4, GDPR, HIPAA, and custom controls specified by the customer. Once violations are corrected and a known-good baseline is established, Fugue Risk Manager can automatically identify configuration drift and revert it back to the established baseline as soon as it occurs.
“Enterprises that adopt the cloud are quickly confronted with the challenge of guarding against infrastructure misconfiguration that leads to critical data breaches and costly compliance fines,” said Phillip Merrick, CEO of Fugue. “We developed Fugue Risk Manager to simplify the task of finding these problems and ensure they never happen again, and do so efficiently to support the speed and agility today’s business demands.”
“With Fugue, I can demonstrate in real time that our cloud infrastructure is compliant all the time. We’ve never really had that before,” said Peter O’Donoghue, VP of Application Services at Unisys Federal. “Fugue’s strength is in providing centralized visibility and control across DevSecOps teams, thereby avoiding policy violations and misconfigurations in the cloud.”
Fugue Risk Manager addresses misconfiguration risk for highly dynamic, API-driven cloud infrastructure. DevOps and CI/CD have helped enterprises move fast and be more competitive, but at the same time the probability of data breaches and compliance violations has increased. Compounding the problem is the traditional gulf between security, compliance, and infrastructure teams. Fugue Risk Manager provides cloud stakeholders with full, continuous visibility into the state of their cloud infrastructure and the assurance that it always remains in compliance with policy.
Easy to adopt and use, Fugue Risk Manager integrates with today’s cloud infrastructure provisioning tools to allow for approved changes while preventing unauthorized changes that can lead to compliance issues and security breaches. Fugue radically simplifies automated remediation for cloud infrastructure misconfiguration by enforcing known-good baselines established by security, compliance, and infrastructure teams. This method helps eliminate problems commonly associated with automated remediation tools, such as maintenance burdens, scalability concerns, and false positives leading to bad changes that result in system downtime events and deployment failures.
Fugue Risk Manager empowers security, compliance, and infrastructure teams to inspect cloud environments against the following compliance regimes:
- NIST 800-53 Rev. 4 (National Institute of Standards and Technology). A catalog of security controls developed by NIST that are used to protect federal government information systems.
- AWS CIS Benchmarks (Center for Internet Security). Consensus-based industry best practices to help organizations assess and improve their security.
- HIPAA (Health Insurance Portability and Accountability Act). Law requiring all HIPAA-covered businesses to prevent unauthorized access to Protected Health Information (PHI).
- GDPR (General Data Protection Regulation). Controls to enforce the European Union regulation for protecting the personal data and privacy of individuals within the EU and European Economic Area (EEA).
It takes as little as 15 minutes to get up and running with Fugue Risk Manager and start identifying compliance violations in your cloud environments. You can register for early access to Fugue Risk Manager here. Fugue Risk Manager will be available under a 10-day free trial.
To schedule an evaluation of your cloud compliance and security needs, email Fugue’s Solutions Architect team at firstname.lastname@example.org.
Fugue automates enterprise cloud security and compliance enforcement to prevent data breaches, policy violations, and system downtime. Fugue provides security, compliance, and infrastructure teams with continuous visibility into the state of their cloud infrastructure and the assurance that it remains in compliance with policy. Fugue’s investors include New Enterprise Associates, Future Fund, Maryland Venture Fund, In-Q-Tel (IQT), and Core Capital Partners. Fugue is an AWS Advanced Technology Partner and a Launch Partner in the AWS Cloud Management Tools Competency Program in the Governance category. Fugue was named a Cybersecurity Breakthrough Award winner in the IaaS category and a Gartner Cool Vendor in Cloud Computing. To learn more about Fugue, visit www.fugue.co.
Gabrielle Jasinski for Fugue