San Jose, CA, USA
Protecting your GCP infrastructure with Forseti Config Validator part four: Using Terraform Validator
Dec 6, 2019 | By Adrien Walkowiak
In the previous posts of this series, we discussed how you can secure your infrastructure at scale by applying security policies as code to continuously monitor your environment with the Config Validator policy library and Forseti. In this article, we’ll discuss how you can reuse the exact same policies and Terraform Validator to preventively check your infrastructure deployments, and block bad resources from being deployed in Google Cloud Platform (GCP).
Protecting your GCP infrastructure at scale with Forseti Config Validator part three: Writing your own policy
Oct 31, 2019 | By Adrien Walkowiak
No two Google Cloud environments are the same, and how you protect them isn’t either. In previous posts, we showed you how to use the Config Validator scanner in Forseti to look for violations in your GCP infrastructure by writing policy constraints and scanning for labels. These constraints are a good way for you to translate your security policies into code and can be configured to meet your granular requirements.
Protecting your GCP infrastructure at scale with Forseti Config Validator part two: Scanning for labels
Oct 7, 2019 | By Adrien Walkowiak
Welcome back to our series on best practices for managing and securing your Google Cloud infrastructure at scale. In a previous post, we talked about how to use the open-source tools Forseti and Config Validator to scan for non-compliant tools in your environment. Today, we’ll go one step further and show you another best practice for security operations: the systematic use of labels.
Sep 17, 2019 | By Adrien Walkowiak
One of the greatest challenges customers face when onboarding in the cloud is how to control and protect their assets while letting their users deploy resources securely. In this series of four articles, we’ll show you how to start implementing your security policies at scale on Google Cloud Platform (GCP). The goal is to write your security policies as code once and for all, and to apply them both before and after you deploy resources in your GCP environment.
Jul 26, 2019 | By Garrett Wong
Google Cloud Platform (GCP) includes a powerful resource hierarchy that establishes who owns a specific resource, and through which you can apply access controls and organizational policies. But understanding the GCP resource hierarchy can be hard. For example, what does a GCP Organization “look” like? What networks exist within it? Do specific resources violate established security policies? To which service accounts and groups visualizing do you have access?
Jul 26, 2018 | By Forseti Security
Learn how to work with Forseti, Google's open source security toolset, to monitor your policies and help keep you secure and compliant.