SaltStack SecOps for Automated IT Systems Compliance and Security Remediation
Security and IT operations teams must work together to keep modern data centers compliant and secure, but their efforts are often crippled by disparate toolsets, misaligned workflows, and competing priorities. It’s time for that to change
Join Mehul Revankar, SaltStack Sr. Product Manager, and Kendall Lovett, SaltStack Sr. Product Marketing Manager, as they discuss SaltStack SecOps, a powerful solution that harnesses SaltStack’s event-driven automation technology to deliver full-service, closed-loop automation for IT system compliance and security.
With SaltStack SecOps, security professionals and IT operations teams can work together to define a compliance policy, scan all systems against it, detect issues, and actively remediate them—all from a single platform.
RecordedFeb 28 201947 mins
Your place is confirmed, we'll send you email reminders
Mehul Revankar - SaltStack Director of Product Management | Linda Brown, Kenna Director of Technical Product Marketing
Kenna Security will be joining us to talk through the latest SaltStack integration and how using Kenna risk-based security and SaltStack automation together can help SecOps teams find, prioritize and fix vulnerabilities fast.
James Watson - System Operations Engineer at NICE Nexidia, Kendall Lovett - Director of Product Marketing at SaltStack
Join us to learn how the DevOps team at NICE Nexidia uses SaltStack to create consistency, control, and cloud scale across 100+ single-tenant Windows environments—each with its own unique customer requirements.
James Watson, System Operations Engineer and principal SaltStack operator at NICE Nexidia, will walk us through the challenge of maintaining and optimizing over 1,000 Windows systems and how they used SaltStack event-driven orchestration to cut their maintenance time in half and improve their team utilization efficiency by 80%
Alex Peay, (SaltStack), John Gentry (Virtana) Nital Gandhi (BOIT Consulting), Craig Theriac (Scale Computing)
Infrastructure management in 2020 is a different game to the one it was in previous decades. In 2020, automation is the key differentiator, making waves across data center software and hardware and bringing in the ability to automatically detect and monitor connectivity, document the presence of network devices, update records with any modifications - and much more.
This intelligent approach to the data center is fast becoming mission-critical, but there are challenges that need to be overcome in order to ensure the approach taken is the right one.
Join this panel of experts as they discuss these automation infrastructure challenges and how to overcome them, including:
- How data scale and edge-to-core data center architectures impact automation management strategies
- How to overcome the hurdle of integrating DCIM automation tools
- How to ensure automation management is a benefit to data center teams, not a threat
Alex Peay, Senior Vice President of Product, SaltStack (Moderator)
John Gentry, CTO, Virtana
Nital Gandhi, Founder, BOIT Consulting
Craig Theriac, Director of Product Management, Scale Computing
Brian Kime - Senior Analyst for Forrester, Mehul Revankar - Director of Product at SaltStack
In this webinar we'll be joined by special guest Brian Kime, Senior Analyst at Forrester, to discuss the state of security operations in 2020.
We’ll discuss the state of security operations in 2020. We'll also cover how emerging threats and increasingly exposed tech footprints are causing organizations to rethink how they truly secure their digital infrastructure.
We’ll share recommendations for managing the separation of duties between security and operations teams to close the gap between vulnerability scanning and remediation. And we’ll show how SecOps automation will play a central role in hardening and enforcing continuous IT security in 2020.
Mehul Revankar - SaltStack Director of Product Management, Kendall Lovett - SaltStack Director of Product Marketing
In this webinar, SaltStack director or product, Mehul Revankar will detail the latest new features in SaltStack Protect—a vulnerability remediation module for SaltStack Enterprise—including integrations with Tenable, Rapid7, and Qualys that allow SaltStack users to ingest scans from each vendor and remediate them with powerful SaltStack automation.
Brandon Bird - Progressive Leasing Sr. Systems Engineer, Kendall Lovett - SaltStack Dir. of Product Marketing
Progressive Leasing needed a better way to audit and automate infrastructure deployment as part a more scalable DevOps toolchain. Configuration management and versioning using SaltStack Enterprise integrated with ServiceNow CMDB did the trick.
Attend this webinar to learn how Progressive Leasing used SaltStack and GitFS for automated, full-stack deployment across multiple repos, and how they addressed performance issues at scale. Learn how they ultimately created an integrated and automated DevOps toolchain using Salt Runners for GitLab, and how integrating with ServiceNow allows them to deploy and audit server infrastructure based on desired-state versions for efficient, repeatable, and consistent enterprise infrastructure.
In this webinar Thomas Hatch, SaltStack CTO and creator of the Salt open source project, will introduce three new open source projects from SaltStack.
Join this webinar to learn why Tom created the POP, Heist, and Umbra open source projects and how they can be used standalone or to extend and enhance the power of Salt for infrastructure automation and configuration management. Tom will also share his vision for these projects and detail roadmap highlights for each.
The open source projects that will be covered in this session include:
- POP: Plugin-Oriented Programming
- Heist: Dissolvable agents
- Umbra: Plugin-based AI/ML engine
For more details on each project, visit https://www.saltstack.com/open-source-projects/
Kendall Lovett - SaltStack Director of Product Marketing, Joseph Hall - SaltStack Sr. Cloud and Integrations Engineer
SaltStack is an intelligent IT automation platform that controls and secures the largest, most complex IT environments on the planet. In this webinar, we'll detail how SaltStack integrates with the ServiceNow New York release to combine the strengths of SaltStack infrastructure automation and security with the industry-leading ServiceNow IT service management platform. We'll also detail common customer use cases, including delivering best-in-class, closed-loop IT automation and change management to eliminate manual work, improve MTTR, and remediate critical security issues at any scale.
There is too much talk in IT security and not enough action. But the reality is you probably don't have the people or the tools to effectively act to secure your IT infrastructure. There is hope. Let's fix IT. Join the CTO of SaltStack, Tom Hatch, for a presentation on hope for the future of IT security.
The pace of infrastructure growth and resulting complexity is overwhelming. Old security tech and processes, combined with overwhelmed and understaffed IT and security teams, simply can't protect against a new and evolving threat landscape. Security exploits are proliferating faster than ever before.
You already know this, but according to SC Magazine in the first half of 2019 there were almost 4000 unique data breaches resulting in more than 4 billion records being compromised.
The hard truth is almost all of these security breaches could've been avoided. Gartner said 99% of exploited vulnerabilities occur on misconfigured, unpatched systems KNOWN to IT security teams.
Security and IT teams need help winning security roulette. Let's fix IT with fully automated, truly collaborative vulnerability remediation.
What You Need to Know
Data breaches are happening every day and are highlighted on the evening news. That's NOT the kind of notoriety that your company needs! In today's world, every organization has concerns about their data and network security, but the real question is - what steps should you take to protect yourself?
On this fast-paced event you'll learn about the most innovative security and networking tools that are available to you today, how they can help you, and how to implement them. You'll get all your questions answered and do it without having to leave the comfort of your office or home! (and have a chance to win some valuable prizes)
Here's why you should join:
- Learn how these cutting-edge security solutions work to protect your company
- Find out the benefits and differences of each of these solutions
- See these solutions in action, with LIVE demos
- Get all your questions answered, in one place
Adam Montville, Center for Internet Security Chief Product Architect, and Mehul Revankar, SaltStack Director of Product
Achieving continuous compliance with security policy for IT infrastructure is no easy task. The IT security challenge is becoming even more difficult with talent shortages, shrinking threat windows, and rapidly increasing infrastructure complexity at scale.
The possibility of achieving continuous compliance isn't the pipe dream it used to be thanks to industry-validated CIS Benchmarks, and technology that provides collaboration for security operations teams and automation for system-level infrastructure security.
Security operations teams often use multiple regulatory frameworks to guide their cybersecurity strategy. No matter the framework, foundational cybersecurity is a great first step toward compliance. For example, PCI, HIPAA, GDPR, and others require IT infrastructure to be configured to a hardened, gold standard.
Cybersecurity goes well beyond simple compliance – it helps protect mission-critical IT systems from the most pervasive cybercriminals and their relentless attacks.
Join Adam Montville, Center for Internet Security Chief Product Architect, and Mehul Revankar, SaltStack Director of Product to learn how your team can make significant strides towards continuous compliance today. Together we will provide an actionable plan for security operations teams to balance compliance and innovation in an era of digital transformation and never-ending security risks.
Mehul Revankar - SaltStack director of product / Rhett Glauser - SaltStack VP of marketing
Earlier this year SaltStack launched a continuous compliance module that revolutionized the SecOps industry by allowing security and operations team to define CIS-certified policies, scan systems against them, and automatically remediate. Next month SaltStack will be launching its next game-changing SecOps module for vulnerability remediation.
In this webinar we will discuss and demo the new module. We'll cover how SaltStack SecOps allows IT and Security teams to:
- natively scan for over 20,000 CVEs (native in SaltStack, no scanning tool required!)
- prioritize vulnerabilities based on severity and risk
- use intelligent automation to remediate faster, more efficiently, and more often
- integrate and orchestrate security workflows with existing tools
We will also cover pricing, availability, and how you can get early access to the vulnerability remediation beta.
IT operations teams are on the hook to hold up their end of the DevOps bargain and help keep development teams productive and efficient. The DevOps handshake is in effect at NetApp and the NetApp Core Infrastructure team is driving substantial efficiencies in to their DevOps process. Attend this webinar to learn how NetApp leveraged the power of SaltStack and Kubernetes to help their development teams provision cloud infrastructure in minutes instead of months. Jacob Weinstock, NetApp infrastructure engineer, describes how he utilized intelligent automation and a restful API to provide fully orchestrated, self-service virtual machine clusters to the NetApp development teams in the true spirit of DevOps.
Brian Armstrong, IBM Cloud network engineering executive; Stephen Dumesnil, IBM Cloud manager, network engineering governance
Attend this SaltStack webinar to learn how IBM Cloud automates continuous compliance for efficient IT security at scale. Brian and Stephen are leading an effort across IBM Cloud global security, IT, and governance teams to scope, mitigate, and audit problems in hours rather than weeks across a substantial network infrastructure to stay ahead of rapidly proliferating threat landscape. Learn how the team is automating and orchestrating the work of SecOps to deliver dramatic improvements in efficiency including a 75% reduction in the time needed to coordinate priorities between security and IT operations teams. IBM Cloud is now able to automatically roll out new security policies and quickly react to any new security threats using a comprehensive command and control platform that combines event-driven automation, remote execution, configuration management, policy definition and scanning, and vulnerability remediation.
DevOps is changing the way we deploy Infrastructure. Just like applications, infrastructure is now deployed as code, as pre-configured templates. Paul Asadoorian and Matt Alderman will discuss the challenges of measuring and maintaining the secure configuration of infrastructure that is now delivered as code. Alex Peay, VP of Product from SaltStack, will then demonstrate how to define, detect, and enforce secure configuration of this infrastructure, including:
- Using industry-standard CIS benchmarks to assess infrastructure compliance
- Maintaining continuous secure configuration with event-driven automation
- Bringing harmony to IT and security teams through a “DevOps approach” to SecOps
Alex's Bio: Alex is the Vice President of Product at SaltStack Inc. Alex has been building software for over 20 years and worked in a variety of companies ranging from small start-ups to IBM. Throughout his career, he has always worked to develop software that enables users to simplify their lives through the use of technology. This drive for simplicity included launching one of the first SaaS products at IBM, using cloud-based software to democratize data at Domo, and now, with the development of SaltStack Enterprise, delivering content on the Salt platform to automate the identification and remediation of security vulnerabilities in complex infrastructures. This spring SaltStack released their SaltStack SecOps product at RSA where it was recognized by CSO Magazine as one of the hottest new products at RSA Conference 2019
What You Need to Know
Security and IT teams must to work together to keep digital business safe and compliant. But conflicting priorities, toolsets, increasing complexity and make it easier said than done.
Join SaltStack Sr. Product Manager Mehul Revankar as he demonstrates how SaltStack SecOps allows IT and security teams to work together to define compliance policies, scan complex systems against them, and remediate issues with intelligent automation.
On This Webinar Event You’ll Discover
- How SaltStack can help teams manage and secure their entire environment—from servers and cloud instances, to network devices, IoT, and endpoints at the edge.
- How SaltStack works with CIS to create curated, certified CIS benchmark checks for dozens of compliance profiles, including: PCI, HIPAA, NIST, DISA STIGs, and others.
- How SaltStack empowers security and IT teams to work together out of a single platform to harden business-critical systems and protect key business assets.
Zach Hilliard, Cyxtera director of site reliability engineering, and Johnny Cook, Cyxtera service reliability engineer
Cyxtera provides secure and efficient digital infrastructure to federal agencies and other businesses in highly regulated industries. Attend this webinar to learn how Cyxtera uses SaltStack SecOps to automate continuous compliance with custom and industry-standard security policies.
Zach Hilliard, Cyxtera director of site reliability engineering, said, “SaltStack SecOps gives our security and site reliability teams the ability to efficiently tackle the difficult task of achieving continuous infrastructure compliance across 55 world-class data centers. SaltStack compliance scanning and automated remediation will help Cyxtera certification processes and ultimately deliver powerful, secure IT infrastructure to our demanding customers.”
Join Zach and Johnny Cook, Cyxtera service reliability engineer, on this webinar to learn the details of how they are doing it.
- Security and IT teams must to work together to keep digital business safe and compliant. But conflicting priorities, toolsets, increasing complexity and make it easier said than done.
- SaltStack SecOps is a new solution that allows IT and security teams to work together to define compliance policies, scan complex systems against them, and remediate issues with intelligent automation.
- SaltStack can help teams manage and secure their entire environment—from servers and cloud instances, to network devices, IoT, and endpoints at the edge.
- SaltStack works with CIS to create curated, certified CIS benchmark checks for dozens of compliance profiles, including: PCI, HIPAA, NIST, DISA STIGs, and others.
- SaltStack empowers security and IT teams to work together out of a single platform to harden business-critical systems and protect key business assets.
Alex Peay, SaltStack VP of product, gets to meet with IT and security teams of all shapes and sizes. When he asks these teams how they maintain security and compliance, the usual response involves a mix of disconnected systems, processes, and priorities that typically deliver less-than-satisfactory outcomes. Why is the de-facto state of securing IT infrastructure often so misguided and unnecessarily painful?
Join Alex as he outlines a plan to help even the most tortured IT and security teams escape from Compliance Hell. This webinar will include tips and best practices that any organization can apply—plus a look at SaltStack SecOps, a new solution for continuous compliance detection and remediation at any scale or complexity.
SaltStack develops intelligent IT automation software for the control, optimization, and security of complex digital business infrastructure at scale. This channel offers two, 30-minute webinars per month that include product demos, guidance on enterprise IT systems management topics, and SaltStack product innovation. If you are a DevOps engineer, site reliability engineer, data center or cloud architect, IT security and compliance pro, an IT executive, or an IT operator, this channel will open your mind to a unique and powerful, event-driven approach to IT systems management.
SaltStack SecOps for Automated IT Systems Compliance and Security RemediationMehul Revankar, SaltStack Sr. Product Manager, Kendall Lovett, SaltStack Sr. Product Marketing Manager[[ webcastStartDate * 1000 | amDateFormat: 'MMM D YYYY h:mm a' ]]46 mins