Security Automation - ansible/community GitHub Wiki
THIS PAGE IS OLD and no longer maintained. For questions, please use the Ansible forum.
Security Automation Working Group
The Security Automation Working Group collaborates on Topics in Information Security Automation in Ansible.
Ansible can be the automation glue between disjoint systems and security appliances that have little to no integrations. Security Operators can utilize Ansible to be more productive, adapt to the growing demand of the modern IT landscape, ensure consistency in their IT environments, and respond to security incidents faster. Beyond that, Ansible can be utilized for automated implementation of security standards, systems hardening, and compliance. Our goal here is to help foster a cross discipline and cross functional collaborative community of Information Security Professionals through the power of automation via Ansible.
Learn more about security automation challenges at ansible.com.
Checkout all the available security vendors integration with Ansible security at ansible.com
Community
| Name | GitHub (+ IRC) | Role | Affiliation |
|---|---|---|---|
| Sumit Jaiswal | justjais | Lead | Red Hat/Ansible |
| Massimo Ferrari | cross-logic | Lead | Red Hat/Ansible |
| Craig Brandt | craig-br | Member | Red Hat/Ansible |
| Jamie Becke | jamieb-ansible | Member | Red Hat/Ansible |
| Nelson Hsu | ndhsu | Member | Red Hat/Ansible |
| Lydie Mode Malivert | lmalivert | Member | Red Hat/Ansible |
| Iftikhar Khan | ikhan2010 | Member | Red Hat/Ansible |
Add yourself to this list as a Reviewer (help review PRs) or as a Member (discuss issues/roadmap) and join the #ansible-security Libera chat Channel! :)
Useful Links
- Ansible security on Galaxy
- Ansible Security Collections & Roles
- What security automation is all about
- Ansible Security Workshop exercises
- Security Automation playlist in our Ansible youtube channel
- Security Roadmap until Dec 2021
- Security: CY22 Q3 Q4, CY23 Roadmap
Latest Security Blogs
Meetings
If you want to bring up an issue, a review-request or a PR to discuss on the meeting, just put it on the meeting agenda.
We have weekly meetings on Mondays at 15:00 UTC in the #ansible-security Libera chat.
Meetings are managed and logged by meetbot, we use the Fedora Project møte: meeting wrangler. Meeting minutes and logs are available by channel or by team. For community members interested in how to use meetbot or how to host an effective meeting, please consult this guide.
You can find the general Ansible roadmaps at Ansible Roadmaps.
Community effort (help welcome !)
- Help foster a community of automation practitioners in Information Security
- Collaborative development on various efforts in the community space
- Engagement with the broader InfoSec Community (meetups, events, online communities, etc)
- Your idea here!
Projects Maintained by this Working Group
| Project | Status |
|---|---|
| IBM QRadar Collection |   |
| Splunk Enterprise Security Collection |   |
| Cisco ASA Collection |   |
| Symantec Endpoint Protection Manager |   |
| TrendMicro Deepsecurity Collection |   |
| ids_install Role |   |
| ids_config Role |   |
| ids_rule Role |   |
| ids_rule_facts Role |   |
| log_manager Role |   |
| acl_manager Role |   |
Contact
We exist within the Ansible Community and therefore use all typical outlets you would expect us to. However, we do have our own #ansible-security Libera chat as our discussions would often be off-topic for other channels.