Ansible for Security Automation
Joel Wirāmu Pauling (Red Hat)
Ansible Security Automation is our expansion deeper into the security use case. The goal is to provide a more efficient, streamlined way for security teams to automate their various processes for the identification, search, and response to security events. This is more complex and higher-value than the application of a security baseline (PCI, STIG, CIS) to a server.
Ansible Security Automation is a supported set of Ansible modules, roles and playbooks designed to unify the security response to cyberattacks.
What you will learn:
- Introduction to Ansible Security Automation.
- How it works.
- Understanding modules, tasks & playbooks.
- How to use Ansible with various security tools:
- SIEM: QRadar
- IDS: Snort
- Firewall: Check Point NGFW
20 years in IT, 10 in Telco and 5 in SDN. Now a Specialist Solution Architect for New Zealand on all things Red Hat.