Cavirin Auto-Remediation Workflows Help Hybrid Cloud Enterprises Maintain Golden Security Posture

Ansible Playbooks and AWS Lambda Functions Integrated into Cavirin  

Close the Loop from Monitoring to Change Management

SANTA CLARA, Calif. – November 13, 2018 – Cavirin Systems, Inc., the only company providing risk, cybersecurity and compliance posture for the enterprise hybrid cloud, today announced auto-remediation capabilities spanning compute instances and cloud services in Amazon Web Services (AWS) and on-premise environments. Many organizations separate security posture monitoring from change management, leaving them exposed when security alerts monitored by SecOps teams wait for DevOps teams for remediation. Closing this security gap via auto-remediation is a key outcome enabled by Cavirin’s CyberPosture Intelligence platform.

Cavirin’s CyberPosture Intelligence platform secures both the public cloud control plane as well as target hybrid cloud workloads (servers), on-premise, within the public cloud, and within containers. The resulting CyberPosture score permits comparison with the organization’s current security posture against the desired ‘golden posture’ and immediately take corrective action. The latest update delivers auto-remediation workflows for both AWS as well as on-premise infrastructure as follows:

• For AWS, Cavirin monitors network ports associated with AWS Security Groups and ranks vulnerabilities based on Cavirin’s CyberPosture Scoring methodology. DevOps users can remediate one or more security groups with one click, which invokes a Cavirin-authored Lambda function deployed within a customer’s AWS account(s). Remediation for Google Cloud and Azure will follow in upcoming releases.
• For compute instances in AWS, GCP, Azure or on-premise environments, Cavirin monitors operating level configuration parameters for drift compared to a golden state defined for a group of machines. Cavirin automatically creates the list of drifting machines as well as a list of configuration settings that require remediation in Ansible’s format. The Ansible server combines the Ansible artifacts with the Cavirin-supplied Ansible playbook to remediate machines to the golden state. The same approach can also be used to create ‘golden’ images during pre-production by assessing candidate images against a golden posture and involving Ansible with Cavirin playbooks to remediate images to a golden state.

These workflows enable enterprises to significantly reduce the effort and time required to plug security holes and minimize risk.

About Cavirin

Santa Clara, California-based Cavirin is a global provider of risk, cybersecurity and compliance posture intelligence for the enterprise hybrid cloud. Cavirin is the only organization that delivers CyberPosture intelligence for the hybrid cloud by providing real-time risk & cybersecurity posture management and continuous compliance, while further integrating security into DevOps. For more information, visit the company’s website, and follow the company on Twitter at @Cavirin and on LinkedIn.

###