Bridgecrew Drops New Developer-first Platform, Streamlines Infrastructure Security from Code to Cloud

  • Bridgecrew transforms how teams secure their public cloud by embedding infrastructure security earlier in development lifecycles.

  • With new run-time and build-time integrations, Bridgecrew equips developers with automated fixes for cloud security issues—and delivers them as code.

  • Infrastructure-as-code allows teams to provision cloud workloads at scale, presenting both a challenge and opportunity when it comes to security.


Bridgecrew transforms how teams secure their public cloud by embedding infrastructure security earlier in development lifecycles. With new run-time and build-time integrations, Bridgecrew equips developers with automated fixes for cloud security issues—and delivers them as code. Public cloud security posture in run-time Bridgecrew connects seamlessly to cloud environments with run-time scanning for AWS, Azure, and Google Cloud. As teams expand their cloud footprints, Bridgecrew automatically identifies run-time issues that expose them to risk.


But unlike compliance and reporting tools, Bridgecrew comes fully equipped with automated playbooks to correct misconfigured resources. Infrastructure-as-code and workload protection in build-time. Infrastructure-as-code allows teams to provision cloud workloads at scale, presenting both a challenge and opportunity when it comes to security. Bridgecrew helps teams keep infrastructure-as-code secure by scanning for issues in Kubernetes, Terraform, and AWS CloudFormation. Bridgecrew also provides fixes at the infrastructure-as-code level—developers can open pull requests through version control system integrations with GitHub and Bitbucket or run code in their local environments.



Read more: NEED FOR EASY IT INFRASTRUCTURE MANAGEMENT IS DRIVING THE ADVANCED STRUCTURED CABLING MARKET

Infrastructure-as-code allows teams to provision cloud workloads at scale, presenting both a challenge and opportunity when it comes to security, Bridgecrew helps teams keep infrastructure-as-code secure by scanning for issues in Kubernetes, Terraform, and AWS CloudFormation.

~ AWS CloudFormation


Developer ecosystem integrations. In addition to providing cloud security posture visibility and automated remediations, Bridgecrew prevents cloud misconfigurations through CI/CD pipeline integrations with GitHub Actions, CircleCI, and Jenkins. Teams get cloud security monitoring as part of every build, ensuring that misconfigurations aren't unknowingly deployed. Ecosystem integrations with Jira, Splunk, and Slack provide real-time alerts where developers need them. Open-source software is key to Bridgecrew's platform and its mission to advance the codified cloud security movement.


Their engineering team supports community-led projects and develop their own tools: Checkov, a static analysis tool for infrastructure-as-code. AirIAM, a least-privilege automation framework for AWS IAM. TerraGoat, a "vulnerable-by-design" Terraform security training tool To empower developers to take a hands-on role in securing their public cloud infrastructure, Bridgecrew's free Community plan now includes both scanning and remediations.


Bridgecrew also provides fixes at the infrastructure-as-code level—developers can open pull requests through version control system integrations with GitHub and Bitbucket or run code in their local environments.


Bridgecrew is the codified cloud security platform trusted by teams from Brex, DataBricks, OneMain Financial, and more. Founded in 2019 by industry leaders Idan Tendler, Barak Schoster Goihman, and Guy Eisenkot, Bridgecrew is based in San Francisco and is backed by top-tier VCs, including Battery Ventures, NFX, and Sorensen Ventures. and is backed by top-tier VCs, including Battery Ventures, NFX, and Sorensen Ventures. Bridgecrew’s developer-first solution allows DevOps and engineering teams to save critical time and money as they address these ongoing security tasks with just the click of a button.


Traditional cloud security tools merely detect gaps in infrastructure security, pushing open issues and violations to DevOps and engineering teams to resolve. This requirement of manual remediation means issues take days or weeks to resolve, leaving a company’s infrastructure vulnerable. It’s also become the main deterrent for companies implementing cloud security and migrating to the cloud. The automated technology is also well-suited for the age of COVID-19 and today’s volatile market environment in which many organizations are trying to automate security and DevOps processes to cut costs and become significantly more efficient.


Read more: CARTESI CREATES LINUX INFRASTRUCTURE FOR BLOCKCHAIN DAPPS

Spotlight

2023년 데이터 AI 트렌드 보고서를 통해 Google Cloud의 인사이트와 IDC 연구 결과 내용 중 선도 기업이 최신 정보와 경쟁력을 유지하기 위해 활용하고 있는 데이터 AI의 5가지 주요 트렌드에 대해 알아보세요. Data Cloud가 지향하는 방향과 그 이유 최신 데이터 생태계가 설계되는 방식 AI가 오늘날의 데이터 전략에 적합한 경우 비즈니스 인텔리전스(BI) 투자로 더 나은 결과를 얻기 위해 필요한 것 오늘날 가장 큰 도전과제인 데이터 보안 문제와 기업이 이를 해결하는 방법

Spotlight

2023년 데이터 AI 트렌드 보고서를 통해 Google Cloud의 인사이트와 IDC 연구 결과 내용 중 선도 기업이 최신 정보와 경쟁력을 유지하기 위해 활용하고 있는 데이터 AI의 5가지 주요 트렌드에 대해 알아보세요. Data Cloud가 지향하는 방향과 그 이유 최신 데이터 생태계가 설계되는 방식 AI가 오늘날의 데이터 전략에 적합한 경우 비즈니스 인텔리전스(BI) 투자로 더 나은 결과를 얻기 위해 필요한 것 오늘날 가장 큰 도전과제인 데이터 보안 문제와 기업이 이를 해결하는 방법

Related News