How Cisco AppDynamics enables organizations to maintain compliance with the Health Insurance Portability and Accountability Act.

Continuous compliance and risk management can help keep your organization safe as the threat landscape changes and expands each year. IT Ops teams aren’t just working on a single machine, or even a few; they are working across technologies, across teams, at scale and expected to work fast while also considering the requirements of cost and compliance and trying to navigate around skills gaps that continue to appear.

Database DevOps has come of age. Now seen as a key technical practice which can contribute to the successful implementation of DevOps, it stops the database being a bottleneck and makes releases faster and easier. Conversely, perhaps, the automation and audit trails it introduces can help to protect personal data within databases and make compliance part of the same process rather than an additional time-consuming step outside it.

Software patching is the important process of deploying updates. These updates are often released to resolve security vulnerabilities and exploits that could lead to a cyberattack. In fact, many high-profile cyberattacks could have been minimized or avoided altogether if not for unpatched software -- which is why patch management is a critical part of cybersecurity best practices and compliance. As cybersecurity regulations continue to roll out, new standards are being created for patch management.

In CFEngine Enterprise we collect information from each system in the infrastructure as inventory. Some inventory is available by default, and more can be added using modules or writing policy. You can use inventory information to create a Compliance Report with checks that determine if the information complies with your security requirements. In this blog post, we will use some modules from CFEngine Build which provide inventory data, and build a Compliance Report on top of those.