We primarily use the solution for cloud security, cloud compliance, and best practices compliance. Essentially, other than that, we'll be looking at a remediation model as well for any kind of cloud incidents and stuff like that. It takes care of that. Now we're starting to use their compliance for infrastructure as code as well.
One of the key things we found is it doesn't focus on a single cloud. It gives you a uniform way to essentially tackle a multi-cloud environment - that means we're able to use Azure, AWS, and GCP. You can start to work with it uniformly without having to really get down to the intricacies of each cloud platform.
It's got a policy engine called CQL, which essentially makes it easier for even non-technical people to start defining policies and controls much easier without having to get down the right technical scripting or technical skills so they can actually use that policy engine which has got a very English like language to describe and build your policy rules. That's a huge help as it essentially helps to take the security conversation wider from just your technical experts to a wide range of people who are really involved and can actually contribute to it effectively.
The initial setup is very simple.