Add your IaC environments

Sophos Cloud Optix can monitor code submitted to your Infrastructure as Code (IaC) repositories for potential security issues.

Sophos Cloud Optix can also monitor code submitted to your Continuous Integration and Continuous Delivery (CI/CD) pipeline.

This can identify potential security issues before they reach production. Sophos Cloud Optix can currently check Terraform, AWS CloudFormation, Ansible, Kubernetes, and Microsoft Azure Resource Manager (ARM) IaC template files.

Sophos Cloud Optix provides integrations for GitHub, Bitbucket and Jenkins. You can also use the Sophos Cloud Optix REST API as part of your development processes and (CI/CD) pipelines. See Getting Started With Cloud Optix REST API.

If you use the GitHub and Bitbucket integrations, you must grant Cloud Optix access to your code repositories.

  1. Click Settings.
  2. Select Environments.
  3. Click Add New Environment.
  4. On the Add your Cloud Provider environment page, select the IaC Environment tab. This tab provides everything you need to get set up.