Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
A Great Fit for Our Compliance Needs
What do you like best about the product?
We are migrating a large production workload from a Managed AWS Provider account to our own AWS accounts. We were in need of a product to ensure our new accounts were configured properly and HIPAA compliant. We evaluated a number of vendors over a few months that provided automated AWS configuration compliance scans. We choose Fugue based on ease of use, feature support, and HIPPA compliance support. We have been using Fugue for a few months now and it has been a great tool that helps us ensure our new AWS accounts are configured securely and stay compliant. In our testing we also found Fugue supported the most HIPAA controls across the various AWS services we use.
The interface is easy to use and understand. Rules seem to be well documented when more understanding or research is required.
The Visualizer tool is a nice bonus. It provides a graphical representation of our AWS accounts. You can zoom in and see your compliance at the object level.
The company seems very responsive to new ideas and feature requests.
The interface is easy to use and understand. Rules seem to be well documented when more understanding or research is required.
The Visualizer tool is a nice bonus. It provides a graphical representation of our AWS accounts. You can zoom in and see your compliance at the object level.
The company seems very responsive to new ideas and feature requests.
What do you dislike about the product?
While HIPAA compliance is our most important control point we would like to see additional compliance offerings like HITRUST.
What problems is the product solving and how is that benefiting you?
We are ensuring our AWS accounts are configured with best practices and that they stay HIPAA compliant.
- Leave a Comment |
- Mark review as helpful
You can't do cloud security better for cheaper
What do you like best about the product?
Upfront - we (New Light Technologies) are a Fugue partner but this does not color my comments below. We became a partner due to my appreciation for the value Fugue provides.
- Immediate value: as soon as you turn it on Fugue will help you secure your environments and save money. You will learn about resources that you likely are unaware of.
- Visibility: There is no easier way to track what has changed in your cloud environments, across multiple vendors. I've tried other tools and writing my own scripts.
-Trusted insight: When Fugue says your services are or are not compliant with a sec family (e.g. HIPAA, SOC, PCI, etc. ) you can trust their analysis.
-Customer focused - Fugue will work with you if you have needs or ideas that that they have not implemented. Also, their development roadmap is inline with what we, cloud security folks, need. And they are aggressive about releasing new features.
- Immediate value: as soon as you turn it on Fugue will help you secure your environments and save money. You will learn about resources that you likely are unaware of.
- Visibility: There is no easier way to track what has changed in your cloud environments, across multiple vendors. I've tried other tools and writing my own scripts.
-Trusted insight: When Fugue says your services are or are not compliant with a sec family (e.g. HIPAA, SOC, PCI, etc. ) you can trust their analysis.
-Customer focused - Fugue will work with you if you have needs or ideas that that they have not implemented. Also, their development roadmap is inline with what we, cloud security folks, need. And they are aggressive about releasing new features.
What do you dislike about the product?
-Not all services in AWS and Azure are covered: I realize this is a reality of developing software like Fugue and it's not that big of a deal but sometimes we run into a service that is not tracked. When we come across these rare situations, we submit a feature request and Fugue is quick to add the new service coverage.
-Not all of my customers use Fugue: We encounter situations where customers are not Fugue users. This makes getting them compliant tough, and when we are forced to use other products in the market or attempt to validate things on our own, the true value of Fugue becomes apparent.
-Not all of my customers use Fugue: We encounter situations where customers are not Fugue users. This makes getting them compliant tough, and when we are forced to use other products in the market or attempt to validate things on our own, the true value of Fugue becomes apparent.
What problems is the product solving and how is that benefiting you?
-Getting cloud environments safe and compliance with security families like: SOC, PIC, HIPAA, NIST 800-53, etc.
-Ensuring that compliant cloud environments do not deviate from the approved configuration. This is done with drift detection and remediation.
-Discovering the breadth of our cloud accounts via tools like Fugue's Visualizer.
-Ensuring that compliant cloud environments do not deviate from the approved configuration. This is done with drift detection and remediation.
-Discovering the breadth of our cloud accounts via tools like Fugue's Visualizer.
Recommendations to others considering the product:
Give it a try via their free trial. The software sells itself.
Fugue makes it easy to holistically view your security posture and maintain awareness of it.
What do you like best about the product?
I love that Fugue makes it simple to audit my environment against security standards. With just a few clicks, I can register my AWS environment and get a comprehensive inventory of all the resources we have, then evaluate all of those resources. Then, as an added bonus, the ongoing evaluation of our environment helps me understand if we've had configuration drift.
In addition, the OPA (Open Policy Agent) framework still seems to be gaining in market share - with Kubernetes throwing their weight behind it. With this, my usage of Fugue will increase in that area as well.
In addition, the OPA (Open Policy Agent) framework still seems to be gaining in market share - with Kubernetes throwing their weight behind it. With this, my usage of Fugue will increase in that area as well.
What do you dislike about the product?
I haven't used the API *yet* for Fugue, more because everything that I need to do has been accomplished through their GUI. In addition, picking up OPA (Open Policy Agent) will take some time, as it's something new which we have not done before.
What problems is the product solving and how is that benefiting you?
We monitor our infrastructure that is running on Amazon Web Services with Fugue. We have seen a benefit of much faster ability to perform comprehensive audits of our deployed resources. In addition, having Fugue identify which resources are not tagged helps us ensure a consistency which we did not have before.
Recommendations to others considering the product:
If you are thinking to try Fugue, take advantage of their free trial first - it will help you understand the product capabilities. (You will probably get your feelings hurt, though, as almost every configuration out there will have a few flaws that Fugue will find!)
Security with Ease
What do you like best about the product?
The best feature of Snyk is that their bot can provide you with a PR on Github with all the security fixes. You just review and click merge. Security can sometimes be easy! I also like to be reminded through mail if I have any issues or if everything is fine. It's easy to maintain through the site.
What do you dislike about the product?
The UI would need a little bit love, especially on mobile web, but other than that the service works as I expect it.
What problems is the product solving and how is that benefiting you?
Maintaining Javascript projects on Github and making sure the security is up to date.
Recommendations to others considering the product:
As long as your code is publicly available you should definitely use Snyk to have a friend checking up on you. It's like taking your code to the doctor.
Effective, targeted product - does its job well
What do you like best about the product?
Ease of automation - can do through command line or integration with version control system
What do you dislike about the product?
Nothing really, other than knowing how many vulnerabilities are out there!
What problems is the product solving and how is that benefiting you?
Allows us to leverage open-source while minimizing security concerns - especially important when dealing with enterprise clients and data.
Great for stopping vulnerabilities before they get merged.
What do you like best about the product?
Multiple language support, rejection of pull requests with recommendations to fix.
What do you dislike about the product?
Not much. Now that PHP is supported, it covers all languages we use.
What problems is the product solving and how is that benefiting you?
Simplified management and reduction of vulnerabilities introduced in custom and third party code.
Fantastic, just wish it supported PHP
What do you like best about the product?
GitLab and GitHub integration, rejects pull/merge requests if vulnerable code introduced, recommends remediation steps.
What do you dislike about the product?
Wish it supported PHP like it does JavaScript. With that, entire codebase would be supported.
What problems is the product solving and how is that benefiting you?
See "what do you like best." Prevents insecure code from being merged.
Recommendations to others considering the product:
If you use GitHub or GitLab repos, look into it.
showing 111 - 117