Using multiple tools to address governance and compliance challenges and to secure cloud environments is common. However, it creates data silos, leading to undetected and unmitigated compliance violations that can slow down application teams trying to adopt agile processes for software delivery. VMware Tanzu Guardrails (formerly VMware Aria Guardrails) enables cloud operations teams to enforce governance best practices across clouds and hosts by delivering tools to create compliant cloud environments, gain a unified view of configuration drift and violations, and remediate drift in a single service. Using Tanzu Guardrails, organizations can consistently enforce policies that help regulate costs, reduce risks, and optimize performance across clouds, Kubernetes, and hosts.
Tanzu Guardrails can empower cloud operations and application teams with expanded visibility into governance issues and deeper insights into overall operational and compliance risks across public cloud environments. New features being announced at VMware Explore in Barcelona will make this solution even more powerful.
What’s new
We are announcing new capabilities that can make it easier to access compliance data from native tools in a single service. Cloud operations and application teams can now investigate and resolve governance issues faster with graph-based inventory data, enhanced compliance and risk context for policy violations, as well as configuration drifts.
VMware Tanzu Guardrails findings
The Tanzu Guardrails service reports all detected configuration drift, posture policy violations, threats, and vulnerability data collected from native tools into a single dashboard, as findings.
Better understanding of compliance issues
With a new feature, Tanzu Guardrails can provide a description of the policies violated as well as suggested remediation steps for each finding to help make resolution of compliance issues easier. To benchmark compliance against an industry or regulatory standard, you can also view the frameworks to which the policy is mapped. Additional details being added regarding resource parameters and activity logs enable application teams to quickly investigate resource configurations and remediate violations. All of the findings on a resource will be available in a consolidated view to help you understand the overall governance risk associated with the resource.
Prioritization of findings
Tanzu Guardrails has added different ways to organize findings data to help you gain a deeper understanding of compliance across cloud environments and prioritize issues:
- Ability to view all findings reported for a policy – For a policy of interest, an aggregate view of all the findings is available, with the ability to sort findings based on severity of risk and number of findings mapped to a given policy.
- Ability to prioritize resources for action – Prioritization of critical, noncompliant resources to quickly mitigate operational and compliance risk can be done by leveraging numeric attention scores, total count of findings for a resource, and number of days the most recent finding remains unresolved.
Expanding findings categories
Cloud operations teams are now able to view threat, vulnerability, and cost data for users of native tools, such as GCP Security Command Center, AWS Cost Explorer, and Azure Advisor. OS compliance violations will also be easily accessible in Tanzu Guardrails by VMware’s FY24.
New VMware Tanzu Hub email notifications for governance findings
Elevate visibility for critical findings by configuring email alerts based on user-defined criteria, such as severity, source (for example, Amazon CloudWatch), cloud resource, and more.
By providing deeper insight into the state of compliance across cloud environments, VMware Tanzu Guardrails can not only simplify cloud governance in cloud and Kubernetes infrastructure but also break down the data silos created by using multiple tools, which can slow down implementation of operational standards and often lead to the persistence of undetected noncompliant resources.
To learn more, see the Tanzu Guardrails product page and other blogs about this solution.
About the Author
More Content by Jyoti Sharma
