Skip to content

Fugue Empowers Cloud Teams To Prepare For and Meet the AWS Well-Architected Framework 80% Faster Using 50% Fewer Resources

FREDERICK, Md. — Nov. 18, 2021 — Fugue, a cloud security SaaS company, today announced turnkey support for automatically checking Amazon Web Services (AWS) cloud environments and infrastructure as code (IaC) for adherence to the AWS Well-Architected Framework. AWS customers can significantly reduce the time and engineering resources required to prepare for the AWS Well-Architected Framework review process and generate a prioritized remediation plan to meet controls in the security and reliability pillars.


With Fugue, cloud engineering and security teams can evaluate their AWS CloudFormation and Terraform templates pre-deployment for adherence to AWS Well-Architected Framework controls and use those same policies to check their AWS runtime environments. Detailed information on each violation and a remediation roadmap prioritized by severity enable teams to meet AWS Well-Architected Framework controls 80% faster using 50% fewer engineering hours.


“The AWS Well-Architected Framework is a powerful tool for assuring organizations are adhering to architectural best practices, but the assessment and remediation process can be time-consuming and resource intensive,” said Josh Stella, co-founder and CEO of Fugue. “Fugue makes it easier and faster for engineering and security teams to know where they stand according to the AWS Well-Architected Framework, remediate issues in environments and infrastructure as code, and design new systems with security and reliability baked into the architecture.”


Fugue helps teams ensure continuous cloud security and compliance efficiently across AWS, Microsoft Azure, and Google Cloud as well as build confidence and trust with management, auditors and customers. In addition to the AWS Well-Architected Framework, Fugue provides turnkey coverage for SOC 2, NIST 800-53, GDPR, PCI, HIPAA, ISO 27001, CSA CCM, CIS Controls, CIS Docker, and CIS Foundations Benchmarks for AWS, Microsoft Azure, Google Cloud, and Kubernetes.


Fugue delivers developer-friendly tooling to develop and test custom policies for validating IaC templates and running cloud environments and also build automated IaC checks into Git workflows and CI/CD pipelines to prevent misconfiguration vulnerabilities in deployments. Fugue’s Unified Policy Engine leverages Open Policy Agent (OPA), the open standard for policy as code, and Regula, Fugue’s open source implementation of OPA for IaC and cloud security. OPA is a Cloud Native Computing Foundation (CNCF) graduated project.


Learn more about Fugue’s turnkey support for the AWS Well-Architected Framework at


About Fugue


Fugue is a cloud security SaaS company enabling regulated companies such as AT&T, Red Ventures, and SAP NS2 to ensure continuous cloud security and earn the confidence and trust of customers, business leaders, and regulators. Fugue empowers engineering and security teams to automate cloud policy enforcement and move faster than ever before — without breaking the rules. Since 2013, Fugue has pioneered the use of policy-based cloud security automation and earned the patent on policy as code for cloud infrastructure. For more information, connect with Fugue at, GitHub, LinkedIn and Twitter.


 All brand names and product names are trademarks or registered trademarks of their respective companies.

Tags: Fugue, cloud security, SaaS, infrastructure as code, IaC, AWS, Amazon Web Services, AWS Well-Architected Framework, policy as code, Unified Policy Engine, cloud, runtime security, cloud infrastructure, cloud policy enforcement, cloud security automation, Open Policy Agent, cloud engineering

Media Contact:

Dottie O’Rourke

TECHMarket Communications

(650) 344-1260 

Fugue Developer

Free Cloud Security for Engineers

  • Visualize your cloud infrastructure
  • Run policy checks and get feedback
  • Detect change and eliminate misconfiguration