Cloud Native Security Part 3: Continuous Compliance with Prowler
The Cloud Native Computing Foundation (CNCF) 2024: The Top Data Trends Driving the Future of the Enterprise report estimates that 80% of new and refactored applications are being built to run on cloud native platforms, with Kubernetes powering the infrastructure. As adoption increases, security teams are relying heavily on cloud security posture management (CSPM) tools to identify misconfigurations and scan their environments against compliance standards. While many commercial CSPM platforms are available, Prowler is an open-source CSPM engine that enables security teams to quickly scan their AWS, Microsoft 365, Azure, GCP, and Kubernetes environments.
Join SANS Author and Instructor Eric Johnson to learn how to automate compliance scans with Prowler using GitLab CI. Attendees will see how to generate and store Prowler reports as GitLab artifacts, then import those results into Defect Dojo for compliance teams to aggregate, deduplicate, and triage.
This webcast supports content and knowledge from SEC540: Cloud Native Security and DevSecOps Automation™. To learn more about this course, explore upcoming sessions, and access your FREE demo, click here.
