Category:
Chef Compliance
Shift-Left Security Testing with Test Driven Development
Test driven development results in shorter design cycles that help deliver resilient software consistently. By implementing TDD, you continually evaluate business requirements, develop the right tests, and drive good software design. In this blog post, we discuss what test driven development means and how it can help DevTest teams shift left and optimize the software development cycle.
Read moreCompliance Audit and Remediate with a Single Solution - Chef InSpec
Chef InSpec enables on-demand auditing and remediation and gives customers a consolidated view of their organization’s security and compliance status in real-time. This blog post discusses how Chef InSpec can automate and streamline compliance audits and make the software delivery phase less stressful for the dev and test teams.
Read moreReducing Multiple Network Calls with Chef InSpec Cloud Resource Packs
By Sathish
Reducing network calls from cloud resources to cloud providers.
Read moreWhat is System Hardening? Standards and Best Practices
Read how Chef enables IT teams to perform system hardening with the help of continuous security audits and remediation that detects and fixes vulnerabilities in diverse IT fleets.
Read moreShift Left with Chef Compliance
This blog post discusses the security and compliance challenges that create major roadblocks in software delivery and why most organizations find implementing auditing and remediating processes daunting.
Read moreA quick Chef way to detect and remediate PrintNightmare
A Microsoft publicly disclosed remote code execution zero-day vulnerability (CVE-2021-34527), now known as “PrintNightmare”, could allow attackers to run code, including malware or ransomware, and take full control of impacted vulnerable systems. Microsoft is urging Administrators to deploy the proper patches as quickly as possible or disable inbound remote printing until the patches can be applied.
Read moreAutomating PCI-DSS Compliance with Chef
Any company that handles credit card data, especially in the United States, is subject to the Payment Card Industry Data Security Standard (PCI DSS), and already knows how difficult and time-consuming PCI audits can be.
Read moreAutomating Financial Service IT Configuration and Compliance
We here at Chef believe that taking a “Everything-as-Code” approach will help Financial Service organizations to automate the configuration, automate the security or compliance of environments and automate the distribution of applications into heterogeneous environments. Infrastructure-as-Code: is where Financial Services can automate the process of managing, provisioning and deploying necessary infrastructure resources.
Read moreRe-cap: Compliance as Code Roundtable
In case you missed it, here is a recap of our Roundtable – Compliance as Code Webinar. Organizations are struggling with balancing the need for speed of innovation delivery and the need for a secure environment to do so.
Read moreWhat is Compliance as Code? The New Frontier in Compliance Automation
There is no doubt that DevSecOps practices accelerate the pace of digital transformation, but those same practices also introduce new challenges to maintaining compliance. Traditional compliance approaches risk slowing software delivery, exacerbating audit pain, and leaving organizations with an incomplete view of compliance posture.
Read more