Skip to content

Support for CIS Docker Benchmark and managed container services added to Fugue's next-generation Cloud Security Posture Management capabilities

Frederick, MD, January 19, 2020 Fugue, the company putting engineers in command of cloud security and compliance, today announced new capabilities for bringing public cloud container resources into compliance and ensuring the continuous security of container runtime configurations. The new capabilities deliver security and compliance visibility and reporting for managed container services offered by Amazon Web Services and Microsoft Azure and turnkey support for the CIS Docker Benchmark. 


The new Fugue features provide continuous configuration visibility, security checks, and compliance reporting for AWS Elastic Container Service (ECS) with Fargate, AWS Elastic Kubernetes Service (EKS), Azure Container Instances, and Azure Container Registry. Developers can run policy checks on their infrastructure-as-code to ensure their managed container resources are configured securely according to the CIS Docker Benchmark and their custom rules, and use those same rules to ensure continuous container runtime security in production. 


“Fugue has simplified the task of establishing compliance visibility and reporting across our entire cloud footprint and ensuring our environment stays secure,” said Ben Carter, Vice President of Enterprise Architecture at Red Ventures.  “As Red Ventures leverages more cloud-native services, Fugue’s new container runtime security capabilities empower our teams to innovate fast while streamlining cloud security and compliance at every stage of development and operations.” 


“Our customers are increasingly taking advantage of the managed container services offered by cloud providers such as AWS and Microsoft Azure, and they need an efficient and effective way to ensure those resources are configured securely and stay that way,” said Josh Stella, co-founder and CEO of Fugue. “We’re excited to extend Fugue’s next-generation cloud security coverage to include public cloud container runtime security so our customers can keep moving fast and know their infrastructure and data remains secure and in compliance.”


Fugue recently introduced next-generation Cloud Security Posture Management (CSPM) capabilities that leverage its cloud state machine and OPA-based policy-as-code engine to provide customers with continuous visibility into the full configuration state and security posture of their entire environment. With Fugue’s data warehouse, teams can analyze their data using Fugue’s native tools or their third party business intelligence (BI) and security information and event management (SIEM) tools. 


Fugue radically streamlines cloud compliance with full historical audit evidence and out-of-the-box support for industry standards, including CIS Foundations Benchmarks, CIS Docker Benchmark, GDPR, HIPAA, ISO 27001, NIST 800-53, PCI, and SOC 2. Fugue supports custom enterprise policies using OPA and provides the Fugue Best Practices framework to protect against advanced misconfiguration exploits that compliance frameworks can miss, including complex Identity and Access Management (IAM) vulnerabilities. 


Fugue offers Enterprise and Team plans under a 30-day free trial, and the free Fugue Developer plan for individual engineers. Fugue is available in the AWS Marketplace. It takes just 15 minutes to get up and running with Fugue. 


About Fugue

Fugue puts engineers in command of enterprise cloud security with tools to prove compliance, build security into cloud development, and stay safe by eliminating cloud misconfiguration. Fugue provides one-click reporting for CIS Foundations Benchmarks, CIS Docker Benchmark, GDPR, HIPAA, ISO 27001, NIST 800-53, PCI, and SOC 2. Customers such as AT&T, SAP NS2, and A+E Networks trust Fugue to protect their cloud environments. Fugue’s investors include New Enterprise Associates, Future Fund, and In-Q-Tel (IQT). Fugue is an AWS Advanced Technology Partner and Microsoft Azure partner. To learn more, visit

Media Contact

Rachel Kaseroff

Fugue Developer

Free Cloud Security for Engineers

  • Visualize your cloud infrastructure
  • Run policy checks and get feedback
  • Detect change and eliminate misconfiguration