When securing organization’s interconnected IT infrastructure, there is a lot of rules and configuration parameters to set by security teams, and these configurations are often done manually. The security features obviously increases as time goes by, and become quickly unmanageable. Moreover, a security policy to implement isn’t that complex and long if it was writen out in human-readable concepts and terms.
OpenPMF is a cloud-based platform which allows to easily define generic security policies. It automatically calculates the matching of technical rules and configurations. Moreover, it handles the policies changes when enterprise IT infrastructure changes by re-computing automatically the technical updates. PlugBee has provided its web platform DSL Forge Workbench to serve as the basis for OpenPMF platform. Moreover, we helped design the policy definition language which supports security teams in specifying policy rules and configuration options.