A new press release states, “SaltStack, the creators of intelligent automation for IT operations and security teams, today announced the general availability of SaltStack Protect for automated discovery and remediation of security vulnerabilities across web-scale infrastructure. SaltStack Protect is a new product now available in the SaltStack SecOps family of products and is additive to SaltStack Comply. SaltStack Comply automates the work of continuous compliance and has been updated with new CIS Benchmark content and a new SDK for the creation of custom security checks. The SaltStack SecOps product family provides a collaborative platform for both security and IT operations teams to help customers break down organizational silos, offset security and IT skills gaps and talent shortages, and decrease the time required to find and fix critical security vulnerabilities.”

The release continues, “While most security products are built to find and prioritize vulnerabilities, SaltStack Protect actually automates the remediation of vulnerabilities by delivering closed-loop workflows that scan, detect, prioritize, and fix critical security threats. These capabilities include: (1) Native CVE scanning – Scans for both on-prem and cloud systems to detect pressing, relevant threats based on more than 12,000 CVEs across operating systems and infrastructure. (2) Intelligent vulnerability prioritization – To assess and prioritize threats for remediation, SaltStack collects real-time data on the configuration state of every asset in an environment and combines it with vulnerability information from SaltStack Protect to accurately differentiate vulnerabilities that are exploitable from those that are not. (3) Automated remediation – SaltStack Protect brings the power of automation to SecOps teams with an API-first solution that scans IT systems for vulnerabilities and then provides out-of-the-box automation workflows to remediate them.”

Read more at PR Newswire.

Image used under license from Shutterstock.com