|
| 1 | +--- |
| 2 | +title: Cloud Asset and Compliance Management – Pulumi Insights |
| 3 | +layout: insights-governance |
| 4 | + |
| 5 | +heading: Insights & Governance |
| 6 | +subheading: | |
| 7 | + Complete visibility and control for your cloud |
| 8 | +
|
| 9 | +meta_desc: Join us on November 5 to see how Neo helps you get clean and stay clean - automatically. Watch it in action. Live demo + Q&A. |
| 10 | +meta_image: /images/product/insights-neo-launch-meta.png |
| 11 | + |
| 12 | +aliases: |
| 13 | +- /insights |
| 14 | +- /product/pulumi-insights |
| 15 | +- /product/crossguard |
| 16 | +- /crossguard |
| 17 | + |
| 18 | +preview: |
| 19 | + header: Pulumi Neo just got smarter about infrastructure policy automation |
| 20 | + description: "Join us on November 5 at 10:00 AM PT / 18:00 UTC for Pulumi Policies: Get Clean and Stay Clean Automatically. Watch the live demo and join the Q&A." |
| 21 | + hubspotID: 4031229e-1370-4118-9379-ee2be1fd64fd |
| 22 | + videoID: mwcrOTEf1EQ?si=Fx77RxM-uCjJLN-6 |
| 23 | + |
| 24 | +overview: |
| 25 | + header: Complete visibility and control for your cloud |
| 26 | + title: See everything. Control everything. Ship with confidence. |
| 27 | + subtitle: Continuous Compliance, By Construction |
| 28 | + body: | |
| 29 | + Stop compliance violations before they become problems. Pulumi Insights & Governance provides a complete lifecycle for auditing existing infrastructure, fixing violations with AI-powered remediation, and preventing future infrastructure issues using policy-as-code guardrails. |
| 30 | + |
| 31 | + Pulumi Policies and Neo close the loop from detection to remediation, ensuring your infrastructure stays secure, compliant, and well-governed automatically. |
| 32 | +
|
| 33 | + items: |
| 34 | + - title: Policy as Code |
| 35 | + icon: shield |
| 36 | + icon_color: purple |
| 37 | + description: | |
| 38 | + Write policies in TypeScript or Python. Hundreds of built-in policies. Block bad configurations before they ship. Auto-remediate existing violations. |
| 39 | +
|
| 40 | + - title: Cloud Resource Search |
| 41 | + icon: eye |
| 42 | + icon_color: yellow |
| 43 | + description: | |
| 44 | + Search across all your clouds using structured queries or natural language. Find resources, track dependencies, identify security risks and compliance violations. |
| 45 | +
|
| 46 | + - title: Complete Cloud Visibility |
| 47 | + icon: global |
| 48 | + icon_color: blue |
| 49 | + description: | |
| 50 | + See every resource across AWS, Azure, GCP, and thousands of providers. Track relationships, monitor drift, identify unused resources. |
| 51 | +
|
| 52 | +
|
| 53 | +features: |
| 54 | + - header: Audit Existing Infrastructure Against Compliance Standards |
| 55 | + body: | |
| 56 | + Continuous audit scans evaluate your entire infrastructure, whether managed by Pulumi, Terraform, CloudFormation, or created manually, against industry frameworks without disrupting deployment pipelines. Non-blocking compliance checks provide instant visibility into your security posture across CIS Controls, NIST SP 800-53, HITRUST CSF, and PCI DSS standards. |
| 57 | + items: |
| 58 | + - Pre-built compliance frameworks ready to deploy |
| 59 | + - Evaluate existing infrastructure on demand with audit mode |
| 60 | + - Automatic triggers after deployments |
| 61 | + - Auditor-friendly compliance reporting |
| 62 | + graphic: /images/product/insights-findings.png |
| 63 | + - header: Automatically Generate Fixes for Policy Violations |
| 64 | + body: Pulumi Neo analyzes policy issues and automatically generates infrastructure-as-code remediation. For resources created outside your control (shadow IT, manual console changes), Neo discovers them, imports them into Pulumi, and fixes compliance violations in a single workflow, eliminating surprise audit findings and cost overruns. Transform hours of manual work into simple review-and-merge processes. |
| 65 | + items: |
| 66 | + - AI-generated infrastructure-as-code fixes |
| 67 | + - Import and remediate unmanaged resources |
| 68 | + - Integrated approval workflows |
| 69 | + - Complete audit trails for compliance |
| 70 | + - Governance-aware remediation with policy compliance checks |
| 71 | + graphic: /images/product/insights-remediate.png |
| 72 | + - header: Prevent Non-Compliant Deployments Before Production |
| 73 | + body: Write governance policies in TypeScript or Python, languages your team already knows. Deploy pre-built compliance packs or create custom rules that enforce your organization's standards. Policies block problematic configurations during deployment, providing immediate feedback to developers within their existing workflows. |
| 74 | + items: |
| 75 | + - Policy-as-code in TypeScript/Python (no DSLs) |
| 76 | + - Pre-built packs for CIS, NIST, HITRUST, PCI DSS |
| 77 | + - Progressive enforcement (advisory → mandatory) |
| 78 | + - Immediate feedback during deployment workflows |
| 79 | + - Neo-generated infrastructure automatically complies with policy standards |
| 80 | + graphic: /images/product/insights-blocking.png |
| 81 | + - header: Search and Understand Your Entire Cloud Footprint |
| 82 | + body: Query any resource across major clouds with natural language or advanced filters. Track configuration changes, analyze relationships between resources, and get answers about your infrastructure in seconds. Pulumi discovers all resources, including those created outside infrastructure-as-code, providing complete visibility for governance and troubleshooting. |
| 83 | + items: |
| 84 | + - Natural language search with AI |
| 85 | + - Multi-cloud resource discovery |
| 86 | + - Configuration change history |
| 87 | + - Resource relationship mapping |
| 88 | + graphic: /images/product/insights-search.png |
| 89 | + - header: Embed Governance Into Developer Workflows |
| 90 | + body: Security and compliance become enablers, not blockers. Developers get clear policy guidance during local development, immediate feedback during deployments, and AI-assisted remediation when issues arise. Platform teams prove measurable value through compliance metrics while maintaining development velocity. |
| 91 | + items: |
| 92 | + - Shift-left security with pre-deployment validation |
| 93 | + - Clear, actionable error messages |
| 94 | + - Policy-aware AI remediation |
| 95 | + - Measurable compliance improvements without velocity loss |
| 96 | + graphic: /images/product/insights-advisory.png |
| 97 | +compliance_frameworks: |
| 98 | + title: Pre-Built Compliance Frameworks Ready to Deploy |
| 99 | + description: Stop building compliance policies from scratch. Deploy expert-authored policy packs that map directly to industry standards and audit requirements. |
| 100 | + |
| 101 | +governance: |
| 102 | + title: The Complete Governance Lifecycle |
| 103 | + image: /images/product/insights-diagram.svg |
| 104 | + items: |
| 105 | + - header: "Step 1: Audit" |
| 106 | + body: Continuous scans reveal compliance posture across existing infrastructure |
| 107 | + - header: "Step 2: Remediate" |
| 108 | + body: AI generates infrastructure-as-code fixes for policy violations |
| 109 | + - header: "Step 3: Prevent" |
| 110 | + body: Policy guardrails block non-compliant deployments automatically |
| 111 | + |
| 112 | +customer_quotes: |
| 113 | + spear: |
| 114 | + text: | |
| 115 | + “We gave our auditors access to our policy packs because it's far easier to understand and prove controls in code than in docs and diagrams. With Pulumi's Policy as Code approach, that manual review process has gone away. We've reduced our Authority to Operate (ATO) timeline from a year and a half to expecting approval in three months.” |
| 116 | + author: Michael Hunter, CEO, Spear AI |
| 117 | + logo: spearAI |
| 118 | + |
| 119 | +analytics: |
| 120 | + title: Analytics & Intelligence |
| 121 | + subtitle: Data-driven infrastructure decisions |
| 122 | + image: /images/product/pulumi-insights-analytics.png |
| 123 | + description: | |
| 124 | + Transform infrastructure data into actionable intelligence. Track costs, identify trends, detect anomalies, and measure compliance. Export to Snowflake, BigQuery, or any data warehouse. Build custom dashboards, automate reports, and integrate with your existing BI tools. Make informed decisions backed by comprehensive cloud analytics. |
| 125 | +
|
| 126 | +pricing: |
| 127 | + title: Pricing |
| 128 | + description: | |
| 129 | + Insights & Governance capabilities are included with Pulumi Cloud. Get visibility and control over all your cloud resources, whether managed by Pulumi or not. |
| 130 | +
|
| 131 | + **Pulumi Neo's policy remediation capabilities and pre-built compliance frameworks.** CIS Controls, NIST SP 800-53, PCI DSS v4.0, and HITRUST CSF v11.5 compliance packs are available starting with Team tier. Continuous compliance monitoring and AI-powered fix generation are available in Team, Enterprise, and Business Critical editions. |
| 132 | +
|
| 133 | +learn: |
| 134 | + title: Take control of your cloud |
| 135 | + items: |
| 136 | + - title: Start with complete visibility |
| 137 | + description: | |
| 138 | + Get instant visibility into all your cloud resources. Add governance policies and optimize with AI-powered insights. |
| 139 | + buttons: |
| 140 | + - link: /docs/insights/get-started/ |
| 141 | + type: primary |
| 142 | + action: Get Started with Pulumi Insights |
| 143 | + - link: /contact/?form=request-a-demo |
| 144 | + type: secondary |
| 145 | + action: Book a Demo |
| 146 | + - title: Transform Governance from Bottleneck to Competitive Advantage |
| 147 | + description: | |
| 148 | + Start with audit scans to understand your compliance posture. Add AI-powered remediation to eliminate issue backlogs. Deploy preventive policies to maintain compliance automatically. |
| 149 | + buttons: |
| 150 | + - link: /docs/insights/policy/get-started/ |
| 151 | + type: primary |
| 152 | + action: Get Started with Pulumi Policies |
| 153 | + - link: https://app.pulumi.com/signup |
| 154 | + type: secondary |
| 155 | + action: Try Pulumi Cloud for Free |
| 156 | +--- |
0 commit comments