A new press release states, “Chef, the leader in Continuous Automation, today announced significant updates to its InSpec by Chef compliance automation platform, including a new plugin architecture, greatly improved ease-of use, improved exception management and automated compliance for Terraform. InSpec 3.0 greatly increases the velocity of compliance audits and remediation, while reducing risk for cross-functional security, development and operations (DevSecOps) teams and their organizations.”
Ben Peterson, Cloud Architect for Pacific Life, commented, “InSpec has helped us break down silos between the application developers, operations and security teams as we migrate to the cloud… It gives everyone confidence that we can automatically deploy and maintain infrastructure-as-code in a transparent, repeatable and secure way. And, due to the human-readable way InSpec code is written, we’ve had success getting buy-in from the non-technical decision makers, which has been crucial in supporting our transformation efforts. We are also excited about the Compliance for Terraform feature, because it will give us static code analysis for security prior to deployment. This is a big deal, because we will catch and prevent deployment of non-compliant infrastructure, which saves costs and enhances security.”
The release adds, “InSpec is an open-source language for describing security and compliance rules that can be shared between software engineers, operations and security engineers. Unlike other products, InSpec is designed to be used at all stages of the software delivery process, from developers’ workstations to production, allowing companies to achieve continuous compliance with no performance impact or side-effects. In contrast to other compliance languages, InSpec is designed to be easy-to-use, even by users with no background in programming.”
Read more at Business Wire.
Image used under license from Shutterstock.com