Comprehensive software reviews to make better IT decisions
Capital One’s Cloud Custodian: A Surprising Answer to Governance Questions
Capital One’s Cloud Custodian is an open source governance, security, and compliance engine for cloud services that will give users the tools necessary to enforce cloud governance – a necessity in highly regulated industries like finance.
Cloud Custodian offers declarative, “governance as code” capabilities through a “YAML DSL rules engine,” and steps beyond traditional management platforms in that it can be used for enforcement of policies. More specifically, Capital One highlights several important features:
- Real-time compliance (that is, actual governance).
- Cloud cost management more generally by shuttering unused or under-used instances.
- Multi-cloud and serverless support.
- The ability to build millions of policies – ranging from simple to complex – using DSL.
Check out SoftwareReview’s Cloud Systems Management category, Date Accessed August 13, 2019.
Capital One might not be the last place you expect to see this kind of technology innovation, but it’s certainly not the first. Cloud Custodian’s roots make sense, however: as an American financial institution Capital One is keen on compliance. Governance as a matter of policy is one thing: ensuring real time compliance using a declarative automated system is a different thing entirely.
Most cloud management platforms out there offer similar services, but they usually focus on cost management. For those organizations that play in highly-regulated spaces, Capital One’s governance/compliance-first approach may be just what cloud skeptics need.
ServiceNow’s Orlando release introduced Now Intelligence, a set of features that strengthen ServiceNow’s lead in the AI-powered IT service management (ITSM) and digital transformation space.
Microsoft has announced self-service purchasing, the ability for any O365 user to buy Power Platform products directly through their corporate O365 tenant. This raises numerous concerns with IT leaders and O365 administrators.
ServiceNow version New York has entered General Availability. These features should delight high-maturity IT departments but are mostly worthless for low-maturity groups.
Quest On Demand has added two new features to help organizations further streamline Office 365 management and potentially reduce costs.
VMware challenges IT to be more than it may be comfortable with: technologists as members of an elite caste charged with the moral use of technology and guarding the uninitiated against negative consequences.
Analysts make their bones on prognostication and prediction, and the imminent demise of any given technology is a mainstay of their subject matter. San Francisco-based VMware has made its sacrificial offerings but for two different auguries. First the place and dominance of public cloud as the center of the enterprise IT activity and work. Secondly, and more importantly, the enduring importance of self-service, elasticity, measure service, broad network access, and pooled resources.
VMware acquires Carbon Black, a cloud-based endpoint protection solution, at $26 per share, representing an enterprise value of $2.1 billion.
AWS is previewing new services that aim to make it easier for customers to monitor containerized applications built using microservice architectures. This should help simplify container operations in the cloud for AWS users.
AWS is previewing Container Insights, a CloudWatch component that allows for greater visibility into containerized applications using microservice architectures.