Cloud Governance is a journey, not a destination. It touches almost every aspect of an enterprise’s infrastructure and IT processes. If done right it can force a positive cultural shift and can contribute to the success of their cloud adoption strategy.
At BrainScale we realize the Cloud governance needs that a modern enterprise has and to help we have created AzCop. It is BrainScale’s marquee Azure governance solution. Below, I will explore 3 of its key highlights.
A big success of modern public cloud is that it has democratized access to compute power. This has accelerated the pace of innovation across industry segments. However, well-regulated enterprises are not easily able to leverage that freedom. In a bid to safeguard and secure their infrastructure, enterprises are falling back to old ways of gating access to computing power in the cloud. This is causing quite a consternation in the business units as its slowing their pace of innovation.
What enterprises of today need, is the ability for their business units to self-service infrastructure on the cloud while at the same time allowing cybersecurity and IT teams to exercise a degree of control.
This is not a purely technical challenge. One is very likely to encounter process and cultural challenges in the process. This is where we can help. We have affected these changes at several Fortune-500 organizations. With AzCop, we bring you a technical solution that is battle tested to navigate these tricky waters.
We don’t want to re-invent the wheel with AzCop. This is not a replacement to any governance solution that Microsoft Azure offers. AzCop builds on top of all the tallest Azure governance technologies, whether they are Azure Blueprints, Azure Policy, Azure Resource Graph or anything else that might pique your interest. What it gives you a framework to stitch these things together into a solution that is cohesive and meaningful.
Mind the gap, no governance solution whether Microsoft or third party can meet all your governance needs. Moreover, none of these solutions are context sensitive. This is where AzCop can help. A few examples to illustrate.
- Ensure charge code tag value on an Azure resource is valid.
- Ensure that an SSL cert is created and registered with every new web app and ensure ongoing validity of that cert.
- Ensure no User Principals are given RBAC rights against a specific set of resource groups.
All existing governance tools in the marketplace can only help with the above in a limited fashion. They can determine if a tag named charge code is present on a resource or not. What they cannot determine is if its valid in the context of the specific enterprise. They can determine if SSL is turned on against an Azure website but they cannot ensure that SSL cert is appropriately created and it is valid currently. They can determine if certain RBAC roles are present or not but they cannot be sensitive to an enterprise’s application-specific needs. This is where AzCop shines.
With a serverless, event-driven architecture, AzCop is built to fill these big gaping holes that no out of the box tool can help with. It is built to be redundant and scale to the size and volume of simultaneous infrastructural changes. It is built to be real-time so that the time to detect changes and mitigate any risks thereof is minimal.
And yes, there is reporting on these too.
Let’s begin the conversation
If you are interested in exploring what AzCop can do for you, send us an email (email@example.com).
And by the way, we are hiring. We are looking for people with a mix of Azure, IT Consulting and Software Engineering experience. If you have the skills and are looking out, please email your cover letter and resume to firstname.lastname@example.org or apply to us on LinkedIn.