Cisco Safe Workload: Coverage-as-Code Is a Win-Win


The previous couple of years have proved to be a catalyst for digital transformation for a lot of of our enterprise clients. Utility modernization and adopting multicloud are the foundational constructing blocks for digitizing enterprise. Clients make use of CI/CD (steady integration, steady supply) to modernize their functions, constructing them on a cloud infrastructure. This evolution has given rise to new software safety challenges by way of velocity, scale, in addition to new and unfamiliar management factors – to not point out siloed organizations and instruments.

To handle these safety challenges, Cisco Safe Workload delivers zero belief microsegmentation in an infrastructure, location, and kind issue agnostic manner. It safeguards software workloads, wherever they stay throughout the hybrid and multicloud surroundings. The latest launch of Safe Workload 3.7 introduces “coverage as code” help – delivering safety on the velocity of DevOps. It permits Safe Workload to be built-in with the client’s alternative of CI/CD toolchains, equivalent to Jenkins or GitLab, and ingest the applying safety coverage in the course of the construct part of the applying. Safe Workload then renders the insurance policies onto the related workloads when the applying goes stay.

Because the graphic under illustrates, Safe Workload ingests insurance policies utilizing Terraform or Ansible, that are extensively adopted instruments utilized by the DevOps staff to automate infrastructure associated duties. Safe Workload integrates with the CI/CD toolchains utilizing a YAML (.yml) manifest to ingest the coverage. It then applications the identical insurance policies to the related enforcement level to attain least privilege entry for the newly constructed or upgraded software.


Safe Workload Coverage as Code instance


Coverage as code helps clients automate coverage deployment on the velocity and scale of contemporary functions. It additionally simplifies collaboration between DevOps/DevSecOps and NetSec groups. The insurance policies are written within the software language and provides acceptable controls to builders to write down their necessities into the applying whereas the NetSec staff ensures full compliance to the infosec insurance policies dictated by the CISO group.

In abstract, Safe Workload removes the boundaries to attaining automated software deployment throughout extremely distributed multicloud environments, with out compromising safety, compliance, or consumer expertise. The outcome – stronger safety, quicker software deployment, and extra environment friendly collaboration.

For extra info on coverage as code, contact your Cisco Account Workforce or Companion Account Supervisor.

We’d love to listen to what you suppose. Ask a Query, Remark Beneath, and Keep Linked with Cisco Safe on social!

Cisco Safe Social Channels




Leave a Reply