Getting Started with IBM QRadar and Red Hat Ansible Automation Platform

Publicada el julio 8, 2020 por Stack Over Cloud

IBM Security QRadar is a Security Information and Event Management (SIEM), which can help security teams to accurately detect and prioritize threats across the organization, providing intelligent insights that enable organisations to respond quickly to reduce the impact of incidents. By consolidating log events and network flow data from thousands of devices, endpoints, users and Read more about Getting Started with IBM QRadar and Red Hat Ansible Automation Platform[…]

Deep dive on Cisco ASA resource modules

Publicada el julio 1, 2020 por Stack Over Cloud

Recently, we published our thoughts on resource modules applied to the use cases targeted by the Ansible security automation initiative. The principle is well known from the network automation space and we follow the established path. While the last blog post covered a few basic examples, we’d like to show more detailed use cases and Read more about Deep dive on Cisco ASA resource modules[…]

Simplifying secrets management with CyberArk and Red Hat Ansible Automation Platform

Publicada el junio 30, 2020 por Stack Over Cloud

Access credentials and secrets are a crucial piece of today’s infrastructure management: if they get compromised, the environment itself is at risk. Thus some time ago, back at about version 3.5.1, the idea of a secrets management system was introduced into Ansible Tower, one of the components of our Red Hat Ansible Automation Platform. What Read more about Simplifying secrets management with CyberArk and Red Hat Ansible Automation Platform[…]

Getting started with Ansible and Check Point

Publicada el abril 13, 2020 por Stack Over Cloud

The scale and complexity of modern infrastructures require not only that you be able to define a security policy for your systems, but also be able to apply that security policy programmatically or make changes as a response to external events. As such, the proper automation tooling is a necessary building block to allow you Read more about Getting started with Ansible and Check Point[…]

Getting started with Ansible security automation: Investigation Enrichment

Publicada el abril 6, 2020 por Stack Over Cloud

Last November we introduced Ansible security automation as our answer to the lack of integration across the IT security industry. Let’s have a closer look at one of the scenarios where Ansible can facilitate typical operational challenges of security practitioners. A big portion of security practitioners’ daily activity is dedicated to investigative tasks. Enrichment is Read more about Getting started with Ansible security automation: Investigation Enrichment[…]

Manage Secrets and Protect Sensitive Data

Publicada el noviembre 20, 2019 por Stack Over Cloud

Automation is an essential part of modern IT. In this blog I focus on Ansible credential plugins integration via Hashicorp Vault, an API addressable secrets engine which will make life easier for anyone wishing to handle secrets management and automation better. In order to automate effectively, modern systems require multiple secrets: certificates, database credentials, keys Read more about Manage Secrets and Protect Sensitive Data[…]

Ansible Security Automation is our answer to the lack of integration across the IT industry

Publicada el septiembre 20, 2019octubre 12, 2019 por Stack Over Cloud

In 2019, CISOs struggle more than ever to contain and counter cyberattacks despite an apparently flourishing IT security market and hundreds of millions of dollars in venture capital fueling yearly waves of new startups. Why? If you review the IT security landscape today, you’ll find it crowded with startups and mainstream vendors offering solutions against Read more about Ansible Security Automation is our answer to the lack of integration across the IT industry[…]