Copy of Compliance
Opencomply allows you to define compliance rules in YAML. Like all configuration, these YAML files can be managed in git.
You can group the rules, audit and review the results.
You can audit the compliance of assets, such as deployments, VMs, and Docker containers (or any asset discovered by the platform), by inspecting their configurations for adherence to specific rules.
With Opencomply, you can:
Define Policy as Code:
Create reusable compliance checks in YAML, ensuring consistent governance within a Git-based workflow.
Audit for Compliance:
Automate recurring checks or run them on-demand through the UI or API, capturing evidence and generating detailed reports. This approach provides flexibility and helps maintain consistent regulatory standards.
Govern Across Vendors:
Evaluate compliance across clouds and platforms with flexible queries, achieving unified strategies without relying on vendor-specific security services.
All Opencomply configurations, including Policies, Controls, Control Groups, and Frameworks, are defined using YAML.
Below is a visual representation of the Compliance Framework’s structure:
This hierarchical structure simplifies organization, enhances readability by enabling clear categorization, and simplifies compliance management.
With Opencomply, you can:
Define Policy as Code:
Create reusable compliance checks in YAML, ensuring consistent governance within a Git-based workflow.
Audit for Compliance:
Automate recurring checks or run them on-demand through the UI or API, capturing evidence and generating detailed reports. This approach provides flexibility and helps maintain consistent regulatory standards.
Govern Across Vendors:
Evaluate compliance across clouds and platforms with flexible queries, achieving unified strategies without relying on vendor-specific security services.
Last updated