0
16.0.0
Washington DC, Vancouver
The DevOps Accelerator integrates IRM Policy & Compliance and DevOps to embed governance early in the app development lifecycle and automate processes to eliminate the delays caused by manual activities, while also mitigating unnecessary compliance and technology risk. All that is required is for either a GRC admin to assign control objectives to PaCE policies or a PaCE admin to assign PaCE policies to GRC control objectives. Then the automated preventative controls within the DevOps Accelerator can be used to continuously monitor compliance and evidence collection without developer intervention. Integration of governance into the development process also enables exception handling so developers can meet compliance obligations and support audit requirements without sacrificing productivity and slowing innovation.
1. Mapping of control objectives from various regulations, standards, frameworks with DevOps PaCE policies:
• 18 PACE policies map to 35 ISO 27002:2013 Controls
• 18 PACE policies map to 27 ISO 27002:2022 Controls
• 20 PACE policies map to 33 CIS V7 Controls
• 20 PACE policies map to 37 CIS V8 Controls
• 21 PACE policies map to 60 PCI DSS Controls
• 22 PACE policies map to 56 NIST 800-53 Controls
2. Automated evidence collection:
• PaCE saves execution activity in a Data Store
• Compliance management team retrieves execution activity from a data store to check if controls are functioning and continuously monitor the functioning of controls
• Compliance managers are empowered to self-serve compliance activity
3. Continuous monitoring and policy exception handling in DevOps Config using GRC Policy and Compliance:
• App Engineer validates a config change using DevOps Config
• PaCE executes policies to validate that change
• If a policy outcome is non-compliant, then PaCE checks GRC for exception
• GRC returns if there are exceptions
• If there are no exceptions, then non-compliant results is returned to a user
• App Engineer can then request an exception from GRC (GRC allows the app developer to move faster)
• After obtaining exception, App Engineer re-runs validate change
- Fixed
- Reduction in installation size of the application.
The following applications are automatically installed when the DevOps Accelerator application is activated:
- GRC: Policy and Compliance Management
- DevOps Config Policy Content Pack
Permissions and roles:
- Role required to install the app: System admin (admin)