Automate CIS


Automated CIS hardening of Windows, RedHat Linux and Suse Linux using Puppet

Customer

Customer is the leading beverage manufacturer who has data-center across the globe and majorly using Redhat, Suse Linux, and Windows operating system.

Challenge

Customer wants to harden their RedHat Linux, windows and Suse Linux servers via Puppet and report the status on puppet console.

Solution

ZippyOPS analyzed CIS Benchmark PDF from CIS and written puppet modules to harden the server. This puppet module will Audit the server on CIS standards and fix the issues and report the current status as custom fact so that it will be displayed in the Puppet console 

Key Highlights

Single Module supporting multiple OS
‌Option to disable specific check for specific sever
‌Centralized reporting for OS Hardening status

Gratification

100%  Compliance in Audits
‌‌40% Faster availability of servers 
‌35% Cost Saving On Infrastructure team
6 Times faster application deployment

Architecture

Below is the High Level Architecture of the implemented solution

Automate CIS


A quick demo video of the automated OS hardening of windows, Redhat Linux, and SUSE Linux using puppet. 


Want to Implement the similar solution 


ZippyOPS Security Blogs



Want to Upskill your Employees?

Hiring resources on new technologies is a really hard and costly affair. Upskilling existing employees will be a better approach as they have better knowledge of application and company ethics ‌ ‌ ‌ ‌ ‌‌

‌ZippyOPS assist you in upskilling by conduction Boot Camp's on the latest technologies




We offer an extensive portfolio of Managed Security services that combine flexibility, reliability, and responsiveness to deliver tremendous value and efficiency to your business. Our services include

Application Security Scanning ‌
‌Infrastructure Scanning ‌
‌OS Hardening
‌Container Security Scanning

For Our DevSecOps Case Studies, Solutions, and sample POC's please refer our

Want to Implement similar project?

With our Enterprise Automation consulting, we help large, medium enterprises and startups achieve higher efficiency in Development and Operations, quicker time to market, better quality of software builds and secure delivery of softwares with early identification of emerging issues, without security weaknesses and letting the code be in a releasable state always. ‌ ‌ ‌