The new standard for compliance enforcement.

Learn More


Build custom policies with industry-standard compliance profiles, such as CIS and DISA STIGS, then apply them automatically across your digital footprint.



Run continuous, item-level policy checks to locate non-compliant systems or applications anywhere in your environment.



Use autonomous policy enforcement to fix violations automatically. Or kick off a remediation workflow so your teams can flag and prioritize issue resolution.

Escape Compliance Hell

Security and IT operations teams must work together to keep data centers compliant and secure, but their efforts are often crippled by disparate toolsets, misaligned workflows, and competing priorities. It’s time for that to change.

Harmony for Security and IT

SaltStack SecOps delivers full-service, closed-loop automation for compliance and security. Finally, security and operations teams can work together to define a compliance policy, scan all systems against it, detect issues, and actively remediate them—all from a single platform.

Access a Library of Compliance Profiles

SaltStack SecOps includes access to a live, growing repository of standard compliance profiles. Each profile include hundreds of up-to-date issue scans, descriptions, and automated remediation actions. Available profiles include:

  • Center for Security (CIS)
  • Security Technical Implementation Guide (STIG)
  • National Institute of Standards and Technology (NIST)
  • Industry specific profiles, such as PCI and HIPAA

Deploy Real, Automated Remediation

SaltStack SecOps can automatically remediate policy violations detected anywhere in your systems. It can also create jobs for review and approval before changes are executed. SaltStack SecOps integrates with third-party systems like ServiceNow for change tracking and reporting.

Build Policies for your Business

When it comes to corporate security policies, there’s no such thing as one size fits all. SaltStack SecOps offers complete policy customization. Create your own company-specific checks, turn off pre-built checks that don’t apply, or create exemptions and rules for specific machines as needed.