Prancer Enterprise has announced the release of its Cloud Security Automation as Code (Susa) framework to the general public. This open-source framework aids in the deployment of secure Infrastructure as Code (IaC) templates to the cloud. Based on Prancer’s security platform, the Cloud Security Automation as Code (Susa) service is a cloud provisioning engine with built-in Static Code Analysis (SCA) for Infrastructure as Code (IaC).
– story continues below the audio file –
The company’s Security Automation as Code (Susa) framework is used to ensure that security requirements are met when cloud infrastructure is provisioned. The resources may be deployed to the cloud using the Security Automation as Code engine.
The built-in or user-defined security policy encompassing security checklists, security templates, and security procedures may be used to test IaC code. This open-source solution for automated cloud template provisioning and deployments is a secured cloud provisioning engine.
Susa provides a CLI based on bash scripting technology that allows users to automate repetitive processes in DevOps environments. Susa is a framework that aids enterprises in achieving consistency across numerous clouds, projects, and environments using IaC technologies like HashiCorp Terraform.
The Prancer Cloud Security Automation as Code (Susa) service is a multi-cloud cloud provisioning engine. Susa can supply resources to Microsoft Azure, AWS, and Google Cloud Platform in a secure manner. Susa’s multi-cloud capacity provides it unique capabilities for implementing DevSecOps guardrails across multi-cloud plans.
Susa’s open-source framework is built on best practices learned through a variety of engagements with top cloud organizations that use cloud enterprise capabilities. Cloud provisioning, security checks, and auditing capabilities are all part of the engine’s design. Before beginning the provisioning process, Susa allows DevOps engineers to examine their IaC code for potential security hardening.
AWS, Azure, GCP
Organizations without prior expertise with Security Automation as Code principles can use Prancer Cloud Security Automation as Code (Susa) to get a head start on adopting the DevSecOps approach. To begin the safe provisioning of IaC templates and automatic security screening against code, organizations can use their current AWS, Microsoft Azure, or Google Cloud Platform account(s).
For Infrastructure as Code (IaC) security in various clouds, Prancer delivers over 1,000 compliance policies. To ensure secure code reaches the cloud, the Prancer Security engine is pre-integrated with Prancer Cloud Security Automation as Code (Susa). To verify that Security Requirements are satisfied, a Security Audit is an important stage in Security Automation as Code (Susa). Security Scans should be done automatically throughout the unattended cloud provisioning process, according to Susa best practices.
Prancer’s Cloud Security Scanner for Infrastructure as Code is pre-integrated with Prancer’s Cloud Security Scanner for Infrastructure as Code (IaC). This integration would assure that IaC stacks, templates, and blueprints are free of known security flaws discovered by the security scanner.
The Susa framework is accessible through Prancer’s GitHub account here.