• About
  • Subscribe
  • Contact
Wednesday, May 7, 2025
    Login
  • Management Leadership
    • Growth Strategies
    • Finance
    • Operations
    • Sales and Marketing
    • Careers
  • Technology
    • Infrastructure and Platforms
    • Business Applications and Databases
    • Big Data, Analytics and Intelligence
    • Security
  • Industry Verticals
    • Finance and Insurance
    • Manufacturing
    • Logistics and Transportation
    • Retail and Wholesale
    • Hospitality and Tourism
    • Government and Public Services
    • Utilities
    • Media and Telecommunications
  • Resources
    • Whitepapers
    • PodChats
    • Videos
  • Events
No Result
View All Result
  • Management Leadership
    • Growth Strategies
    • Finance
    • Operations
    • Sales and Marketing
    • Careers
  • Technology
    • Infrastructure and Platforms
    • Business Applications and Databases
    • Big Data, Analytics and Intelligence
    • Security
  • Industry Verticals
    • Finance and Insurance
    • Manufacturing
    • Logistics and Transportation
    • Retail and Wholesale
    • Hospitality and Tourism
    • Government and Public Services
    • Utilities
    • Media and Telecommunications
  • Resources
    • Whitepapers
    • PodChats
    • Videos
  • Events
No Result
View All Result
No Result
View All Result
Home Technology Infrastructure & Platforms

Pulumi strengthens cloud security and automation with new offerings

FutureCIO Editors by FutureCIO Editors
April 8, 2025
Image by Roman from Pixabay

Image by Roman from Pixabay

Infrastructure management platform Pulumi has announced significant product enhancements to improve security, streamline automation, and provide greater control over cloud resources.

Joe Duffy
Joe Duffy

"At Pulumi, we believe that cloud security can no longer be an afterthought. Instead, security must be built into the tools and methods we use to automate and manage cloud applications and infrastructure, so things are secure from the outset," said Joe Duffy, Founder/CEO, Pulumi

Automating credential security

Pulumi ESC now provides automated secrets rotation, helping minimise security risks while integrating seamlessly with existing workflows.

Secrets can be rotated on demand and through a rotation schedule. A two-secret strategy, where two secrets are valid at any time, ensures availability during credential transitions. Rotated Secrets provides comprehensive auditing and tracking of the entire credential history, including the date of rotation and the individuals who accessed them.

Securing secrets management

The Pulumi ESC GitHub Action enables teams to securely inject secrets and configuration into GitHub Actions workflows as needed rather than storing them as static, long-lived secrets. This reduces the risk of credential leakage while streamlining CI/CD pipelines.

The Pulumi ESC GitHub Action is designed for ease of use. It can download the Pulumi ESC CLI, inject all environment variables from an ESC environment, or inject specific environment variables as needed.

Enhancing authorisation at scale

Pulumi's new Role-Based Access Control (RBAC) system, which will be available soon, provides access control and modification of resources within an organisation.

It also unifies control across all products in Pulumi Cloud, allowing organisations to define custom roles with specific permissions, apply these roles to users and teams, and control access to individual resources.  The system also supports role-based access tokens, ensuring that automated processes have only the necessary permissions.

Unified governance

Pulumi Insights now extends policy-as-code capabilities to automatically govern all cloud resources, enabling organisations to write policies once and apply them universally across IaC and discovered resources in AWS, Azure, OCI, and Kubernetes environments.

It also provides comprehensive visibility into policy violations through a dedicated dashboard, enabling quick identification and resolution of non-compliant resources.

"The recently announced capabilities help the entire team enhance their security posture across many scenarios: whether it is developers securely managing credentials and secrets, platform teams delivering secure CI/CD pipelines, or security teams applying governance across their entire cloud estate, this announcement has something for everyone," Duffy added.

Related:  IDC outlines public cloud spending patterns in 2021
Tags: cloud securitycredential securitycybersecurityPulumi
FutureCIO Editors

FutureCIO Editors

No Result
View All Result

Recent Posts

  • Agentic AI-powered AppSec platform launched for the AI era
  • IDC forecasts GenAI alone will grow at a 59.2% CAGR
  • Dataiku brings new AI capabilities to create and control AI agents
  • Microsoft reveals the rise of a new kind of organisation in the AI era
  • St Luke’s ElderCare enhances data security and user experience with Juniper

Live Poll

Categories

  • Big Data, Analytics & Intelligence
  • Business Applications & Databases
  • Business-IT Alignment
  • Careers
  • Case Studies
  • CISO
  • CISO strategies
  • Cloud, Virtualization, Operating Environments and Middleware
  • Computer, Storage, Networks, Connectivity
  • Corporate Social Responsibility
  • Customer Experience / Engagement
  • Cyber risk management
  • Cyberattacks and data breaches
  • Cybersecurity careers
  • Cybersecurity operations
  • Education
  • Education
  • Finance
  • Finance & Insurance
  • FutureCISO
  • General
  • Governance, Risk and Compliance
  • Government and Public Services
  • Growth Strategies
  • Hospitality & Tourism
  • HR, education and Training
  • Industry Verticals
  • Infrastructure & Platforms
  • Insider threats
  • Latest Stories
  • Logistics & Transportation
  • Management Leadership
  • Manufacturing
  • Media and Telecommunications
  • News Stories
  • Operations
  • Opinion
  • Opinions
  • People
  • Process
  • Remote work
  • Retail & Wholesale
  • Sales & Marketing
  • Security
  • Tactics and Strategies
  • Technology
  • Utilities
  • Videos
  • Vulnerabilities and threats
  • White Papers

Strategic Insights for Chief Information Officers

FutureCIO is about enabling the CIO, his team, the leadership and the enterprise through shared expertise, know-how and experience - through a community of shared interests and goals. It is also about discovering unknown best practices that will help realize new business models.

Quick Links

  • Videos
  • Resources
  • Subscribe
  • Contact

Cxociety Media Brands

  • FutureIoT
  • FutureCFO
  • FutureCIO

Categories

  • Privacy Policy
  • Terms of Use
  • Cookie Policy

Copyright © 2022 Cxociety Pte Ltd | Designed by Pixl

Login to your account below

or

Not a member yet? Register here

Forgotten Password?

Fill the forms bellow to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
No Result
View All Result
  • Management Leadership
    • Growth Strategies
    • Finance
    • Operations
    • Sales and Marketing
    • Careers
  • Technology
    • Infrastructure and Platforms
    • Business Applications and Databases
    • Big Data, Analytics and Intelligence
    • Security
  • Industry Verticals
    • Finance and Insurance
    • Manufacturing
    • Logistics and Transportation
    • Retail and Wholesale
    • Hospitality and Tourism
    • Government and Public Services
    • Utilities
    • Media and Telecommunications
  • Resources
    • Whitepapers
    • PodChats
    • Videos
  • Events
Login

Copyright © 2022 Cxociety Pte Ltd | Designed by Pixl

Subscribe