Build confidence in leveraging the cloud
Transcript of Build confidence in leveraging the cloud
Your Cloud Operations GuideCOMPLIANCE | COST | SECURITY
OpsCompass makes it easy for enterprises to realize the full potential of their multi-cloud environments by providing the
right information at the right time and actionable insight into what to do next.
WHO is OpsCompass?
REAL-TIME INSIGHTS AT YOUR FINGERTIPS
founded in 2016OpsCompass is a leading SaaS solution for enterprises that are shifting their primary development and IT efforts to the cloud and require professional grade governance.
Our mission is to provide real time, policy and governance oriented tools for the cloud - helping companies innovate faster and reduce costs while improving security and compliance.
OpsCompass’ SaaS product delivers continuous configuration drift detection, compliance analysis, and governance blueprints for businesses leveraging Microsoft Azure, AWS and GCP -- as well as SaaS (e.g. Office 365). This allows for cloud platform policies, monitoring standards, and analysis to be a key component of a DevSecOps process.
Multiple $1B+ companies leveraging us today.
who is OpsCompass?
OFFICES
OMAHA9300 Underwood AveSuite 300Omaha, NE 68114
TWIN CITIES7900 International DriveSuite 300Bloomington, MN 55425
CHICAGO1101 W Monroe StreetSuite 200Chicago, IL 60607
PHONE
(877) 970-6879
Locations
REAL-TIME INSIGHTS AT YOUR FINGERTIPS
Benefits of the Cloud, Under ControlAs enterprises began to migrate from private data centers to the cloud, they uncovered a world of possibility. Never before could they deliver business solutions with such speed and agility. But in this environment of rapid change, they also uncovered new risks.
Modern enterprises needed to find a way to preserve the cloud’s advantages without sacrificing compliance, security, or their ability to manage costs. They needed a guide to help them realize the full potential of the cloud.
Since our inception, OpsCompass has served as this guide along your cloud journey.
who is OpsCompass?
1. Incident/Issues2. Bad Start
3. Change of Direction
1. Setup Automation2. Guardrails & Gates
3. Enforce Policies
1. Secure Access2. Trend & Compliance Analysis
3. Forecast Expenditures
Remediation Implementation Optimization
Solid Plan
ASSESS & DESIGN
0.0
BASIC GOVERNANCE
Successful Launch1.0
SCALE
Essential Workload3.0
ONGOING GOVERNANCE / ROI REALIZATION
Enterprise Confident4.0
• Enablement • Managed Results
WHat is OpsCompass?
We developed a SaaS solution that provides the right information at the right time & actionable insight into what to do next.
One that’s simple to deploy, intuitive to use, and as flexible as the cloud itself. Across compliance, security, and cost management, we provide the ability to fold cloud operations into existing processes with existing personnel.
With OpsCompass as your guide, realizing the full potential of the cloud is easier than ever before.
OPSCOMPASS SAAS
Maximize the benefits of the cloudOpsCompass works seamlessly with the three major public cloud providers, but we don’t stop there. Extend visibility, monitoring, and baselines across SaaS applications like Office365 for improved governance across your entire multi-cloud environment. The benefits of the cloud get diluted without a proper governance strategy.
Our SaaS solution provides a single dashboard with real-time and action-oriented insights across compliance, security, and cost management. It’s simple to deploy, intuitive to use, and as flexible as the cloud itself.
why OpsCompass?
Compliance AnalysisDeep, point-in-time visibility and
automatic benchmarking of every change against regulatory standards
and custom internal baselines.
Cost AnticipationReal-time insight into cost-driving
actions as they happen, not after an unexpected expense is realized.
Security PostureDiscover and remediate risky
configuration changes in real-time with sophisticated monitoring and
actionable alerts.
Realtime baselining
Constantly measure against your policies
Single-source of truth
Get the whole financial and security story
Automation
Feel comfortable you’re ready for an audit at anytime
True Multi-Cloud Support
Real-Time Insights at Your Fingertips
GOVERNANCE STRATEGY THAT IS MORE THAN A SPREADSHEET
Your cloud center of excellence dashboardFold cloud operations into your existing processes with your existing personnel.
why OpsCompass?
Cloud Governance 101
• Benchmark against CIS Controls and make it an ongoing process
• Maintain and enforce configuration baselines across your clouds
• Monitor automated, continuous detection of baseline violations
• Establish work ows and process that drive DevSecOps
• Receive cost alerts immediately with no waiting for reports
• Reduce clutter, get the right information to the right people
“As cloud becomes increasingly mainstream through 2022, it will dominate ever-increasing portions of enterprise IT decisions” - Gartner
AApppplliiccaattiioonnss
sseeccuurriittyy
SSeenniioorr LLeeaaddeerrsshhiipp
OOppeerraattiioonnssCCoommmmuunniiccaattiioonnss//HHRR
Organization• Establish Cloud Center of Excellence (CCOE)• Create core governance baseline
Auditing• Automated and continuous inspection
Security• Instantly discover high risk environmental
changes• Learn policy violations
Cost Controls• Know the exact moment when costs spike
The average cost for organizations that experience non-compliance problems is $14.82 million, a 45% increase from 2011- FMP Gobal “The True Cost of Non-Compliance”
compliance analysis
Compliance doesn’t have to be a bad word
• Cloud governance makes it easier
Always watching for issues
• Know when they happen and not afterit’s too late
Be ready for regulatory, standards, and contractual audits
Cloud + a solid governance strategy keeps your customer’s trust and eliminates regulatory headaches
why OpsCompass?KNOW YOUR SCORE
Keep Your Cloud In Compliance with EaseWith the quantity and speed of changes in the cloud, staying compliant can be a daunting task. But OpsCompass helps you stay audit-ready more easily than ever before. With our proprietary compliance score, you can get the full picture of your compliance posture in one simple number.
• Determine compliance baseline immediately upon signing up• Obtain compliance alerts when you go out of compliance and
suggestions for remediation• Baseline any concerns against a good/known environment• Get correct information in front of the right people by
assigning users to teams for their required alerts• Receive cost and security alerts out of the box
• Establish restrictions
• Multi-Cloud environments
• Guardrails, not gates – take fulladvantage of the speed of thecloud
“Gartner predicts that, through 2020, 95 percent of cloud security failures will be the customer’s fault.” - Jay Heiser, research vice president at Gartner.
Allows teams to assess patterns and adjust policies using key, real-time information
why cloud baselines are important
• Offers complete picture of yourenvironment at every moment
• Allows you to safely takeadvantage of the cloud’sflexibility and agility
• Increase awareness of changeswithout gates
• Extend flexibility to users andteams without sacrificingsecurity
why OpsCompass?AUTOMATING YOUR GOVERNANCE STRATEGY
Maintain a Sound Cloud Security PostureWith OpsCompass, every cloud event and change is inspected in near real-time. When high-risk configuration changes occur, the appropriate team members are automatically notified so they can remediate the vulnerability right away. There’s no need to sacrifice security to take advantage of the speed and agility the cloud makes possible.
OpsCompass Enhances Native Tools
why OpsCompass?GOVERNANCE AND COMPLIANCE IN THE PUBLIC CLOUD
enhancing native cloud toolsThe cloud offers users the flexibility to innovate using a variety of tools and resources. OpsCompass adds the process engine to enhance the native tools - helping you to stay in control by ensuring a certain configuration posture.
• EC2• S3• RDS• IAM• CloudWatch• Cloud Trail• Dynamo DB• Lambda• Secrets
Manager• Cloud Formation• AWS
Orginizations
• Azure Blueprint• Azure Policy• Resource
Grouping &Tagging
• ResourceManagerTemplates
• Azure DevOps• Azure Security
Center• Azure Site
Recovery• Azure Backup
AWS Azure
-- AND MORE --
Gartner predicts that through 2022, 75% of DevOps initiatives will fail to meet expectations due to issues around organizational learning and change.
why OpsCompass?
Why opscompass Alerts this way• Real-time alerting to baseline and
compliance violations
• Multi-user and team collaborationworkflows for DevSecOps
• Intelligent alerts that categorize andpredict a change impact
THE RIGHT INFORMATION AT THE RIGHT TIME
Know when your team needs to actA team is needed to enforce a cloud governance policy, including:
• IT• Finance• Architects
Say no to alert fatigue• Each CCOE member has different priorities and requirements
Provide better information to CCOE team• Know why and then how to fix it
CLOUD ADOPTION FRAMEWORKS
Maximize the Potential of Your CloudOpsCompass leverages Cloud Adoption Frameworks built by the major cloud providers to help you feel safe knowing you’re proactively managing your cost, compliance, and security risks as you adopt the cloud.
By providing a single solution for managing governance across cloud providers, OpsCompass empowers you to focus on using the capabilities of the cloud to advance your business.
HOW WE HELP
Large health insurance company
ChallengeCompany migrated their compliance app to the cloud, and standardized their security within the DevOps pipeline, while assuming that everything would go through their pipeline and nothing would change. They failed an audit and incurred a $80k fine.
SolutionViewed a demonstration of OpsCompass and spent some time understanding our approach to the service .
ImpactThey were planning on hiring two DevSecOps engineers to embed in their engineering teams. Because of OpsCompass’ visibility they realized they did not have to add staff, eliminating $500k in future spend.
Case Study
HOW WE HELP
Large Financial Planning Company
ChallengeThe organization decomposed an agent compliance application to a cloud native architecture and built additional auditing functionality into the application. They re-architected and deployed the application with functions and Cosmos DB.
SolutionThey evaluated their existing security and compliance tools and determined them to be too heavy, too costly and too difficult to use. They purchased OpsCompass after viewing a demonstration and understanding the product's architecture.
ImpactSecurity and compliance are high priorities and in order to meet the requirements of their customers, they needed a security and compliance tool that matched their engineering patterns. Because it was quick to install and use, OpsCompass further enhanced the speed and agility of their engineering teams.
Case Study
HOW WE HELP
Health Fitness Holding Company
ChallengeHolding company that has seven largely autonomous, business unit-based, engineering teams leveraging both AWS and Azure. Corporate IT is responsible for the spend and operations of their Public Clouds, but don’t have visibility into their usage, or any confidence that they are secure.
SolutionCompany agreed to a Microsoft funded Rapid Prototype, where within 30 minutes, they connected their Azure Environment to OpsCompass and received a compliance number.
ImpactWithin the first week, they nearly tripled their compliance score. The organization was able to quickly find and prioritize issues that later led to increasing their compliance score upon remediation. Corporate IT also found that they had greater visibility into usage, and are now having more effective conversations with the business.
Case Study