Comprehensive Software Reviews to make better IT decisions
Capital One’s Cloud Custodian: A Surprising Answer to Governance Questions
Capital One’s Cloud Custodian is an open source governance, security, and compliance engine for cloud services that will give users the tools necessary to enforce cloud governance – a necessity in highly regulated industries like finance.
Cloud Custodian offers declarative, “governance as code” capabilities through a “YAML DSL rules engine,” and steps beyond traditional management platforms in that it can be used for enforcement of policies. More specifically, Capital One highlights several important features:
- Real-time compliance (that is, actual governance).
- Cloud cost management more generally by shuttering unused or under-used instances.
- Multi-cloud and serverless support.
- The ability to build millions of policies – ranging from simple to complex – using DSL.
Check out SoftwareReview’s Cloud Systems Management category, Date Accessed August 13, 2019.
Capital One might not be the last place you expect to see this kind of technology innovation, but it’s certainly not the first. Cloud Custodian’s roots make sense, however: as an American financial institution Capital One is keen on compliance. Governance as a matter of policy is one thing: ensuring real time compliance using a declarative automated system is a different thing entirely.
Most cloud management platforms out there offer similar services, but they usually focus on cost management. For those organizations that play in highly-regulated spaces, Capital One’s governance/compliance-first approach may be just what cloud skeptics need.
VMware acquires Carbon Black, a cloud-based endpoint protection solution, at $26 per share, representing an enterprise value of $2.1 billion.
AWS is previewing new services that aim to make it easier for customers to monitor containerized applications built using microservice architectures. This should help simplify container operations in the cloud for AWS users.
AWS is previewing Container Insights, a CloudWatch component that allows for greater visibility into containerized applications using microservice architectures.
AWS is previewing Anomaly Detection, a CloudWatch component that allows for greater visibility into containerized applications using microservice architectures.
Microsoft has just announced that effective July 1, 2020, Microsoft Partners will lose their Internal Use Rights (IUR) to use Microsoft products at no charge. The IUR benefit is easily the most valuable partner benefit and is currently received as a component of the Microsoft Action Pack.
ServiceNow and Microsoft Partnership: Great for ServiceNow and Microsoft Customers, Great for Vendor Lock-In
ServiceNow and Microsoft are furthering their partnership by hosting the Now platform in the Azure-trusted cloud. These features and integrations are powerful, but comes at the price of vendor lock-in.
VMware’s end-user computing team unveiled the latest reference architecture (RA) for Workspace ONE and Horizon. Use it to kick-start a continual improvement program.
At the RSA Conference earlier this month, Spirion announced it had won the Gold Cybersecurity Excellence Product Award in the Data Classification category.
Google touts the avoidance of vendor lock-in as a key benefit of its new Anthos platform.