Sign In
Book Intro Call

How Windward delivers Standardized Infrastructure at Scale with ControlMonkey

About

Windward analyzes more than +2M Daily vessel activities to provide its customers with the latest insights and Organization Defined Risk tailored to their unique workflows to optimize operational readiness and supply chain risk management.

Headquarters
Industry

If you’re running any workload on a public cloud, you already know that maintaining compliance and security is critical.

The Challenge

For a rapidly scaling company with a large and robust cloud infrastructure, Windward found it extremely difficult to manage and govern its AWS environments efficiently.  

The combination of error-prone manual resource configuration, lack of version control, inconsistencies, and scalability drove Windward’s engineering to standardize their cloud environments by utilizing Terraform.

Despite high Terraform usage, the WindWard DevSecOps team still faced challenges managing and governing their AWS resources. 

  • Employees were still modifying resource configurations through the AWS Console, causing Terraform Drifts that negatively impacted the standardization they attempted to implement with Infrastructure as Code. 
  • Whenever an infrastructure change was needed, Terraform ‘Plan’ and ‘Apply’ were run on the DevOps personal laptops, wasting time, being counterproductive, and creating unnecessary operational bottlenecks. 
  • Lack of visibility and auditing of infrastructure changes made it extremely difficult to troubleshoot and know exactly who modified what resource and when. 
  • Shifting more of their infrastructure to Terraform Code required extensive DevOps resources. 

So, six months after initially shifting to Terraform, Jonathann Zenou, Director of DevSecOps at Windward, sought an IaC Automation solution to help him overcome these challenges and level up his cloud governance with Terraform. 

The Solution 

Windward evaluated several platforms in their search for a Terraform Automation Platform but eventually decided on ControlMonkey as their preferred solution. 

While other platforms covered only specific aspects of Terraform Automation, ControlMonkey was the only solution that provided the most comprehensive Terraform Automation, was the fastest to implement, and was extremely simple to use. 

Onboarding the ControlMonkey platform and integrating their Terraform stacks was super-easy, enabling the DevOps team to get started immediately. 

Since implementing ControlMonkey six months ago, the WindWard DevSecOps team has been able to: 

  • Run Terraform ‘Plan’ and ‘Apply’ from a centralized, collaborative space and eliminate the need to use their personal laptops.
    Whenever a Pull Request was created, the team had full visibility into which resources would be changed and the impact of those changes on security, cost, and other compliance requirements. 
  • Using ControlMonkey Terraform Import Engine, they shifted more AWS resources to Terraform. They increased their Terraform coverage without writing a single line of code, saving the team precious time routed to strategy and innovation. 
  • Implement proactive control policies for any new infrastructure change using the ControlMonkey Terraform CI/CD solution.
    • Enforce tagging of every resource to leverage AWS EDP. 
    • Prevent the deletion of Production resources. 
  • Automate the onboarding of new employees using Terraform – ControlMonkey automates the creation of all user accounts for the subsystems employees use (e.g., AWS, Jenkins), making their workflows more efficient. 
  • Automate the validation of any PR with ControlMonkey’s bot. The bot runs the Terraform ‘Plan’ and provides a detailed report of where and why it failed, leaving the DevSecOps only to need to approve and merge the PR.
  • Easily investigate production incidents with a clear audit log of who changed what resource configuration and when, significantly reducing the investigation time from minutes to seconds.
  • Extract SLDC and audit reports from their SOC and present them to their security auditors. 
  • Enable developers to launch infrastructure resources independently using ControMonkey’s Self-service solution (Internal Developer Platform)
  • Shift left their security and compliance measures as part of the Infrastructure CI/CD. 
Headquarters
United States
Industry
Cyber Security

If you’re running any workload on a public cloud, you already know that maintaining compliance and security is critical.

“ControlMonkey gave us the confidence to start our Terraform migration project and enabled us to shorten the time span significantly while minimizing DevOps hours required to accomplish the task”

Roei Aharoni

CTO

“ControlMonkey helped us shift to Infrastructure as Code easily and swiftly, while saving 80% of the migration time. Now we manage our AWS Infrastructure in a GitOps methodology through the ControlMonkey platform, with no ClickOps operations, saving countless hours of the DevOps time for infrastructure provisioning and management.”

Doron Gutman

Head of DevOps

“ControlMonkey helped us discover which resources were not managed by Infrastructure as Code and easily migrate them into Terraform with a single click. ControlMonkey shortened our migration project timeline by 53% and saved valuable DevOps hours.“

Ron Gruner

VP R&D (Granulate)

“As a DevOps team with members spread across multiple time zones, it was crucial for us to work with one centralized system responsible for modifying our infrastructure in production. Thanks to ControlMonkey’s CI/CD solution, we now manage more infrastructure in less time and our productivity has increased by 30%.”

Anton Yurchenko

Director of DevOps & Data

“As a company that manages huge clusters of AWS resources, the ControlMonkey Platform and specifically its GitOps pipeline capabilities is an integral part of our infrastructure deployment process, enabling us to shift left our infrastructure policies, best practices, and guardrails to make sure our production environment is stable, compliant and secure.”

Yoni Farin

CTO

“What I love about ControlMonkey is that it lets you leverage Terraform to its fullest without needing to write a single line of code.”
Jonathann Zenou
Director of DevSecOps
Headquarters
London, United Kingdom
Industry
Maritime

Windward is a leading maritime data and analytics company that leverages AI and big data to provide actionable insights for the maritime industry. Their platform helps organizations enhance operations, ensure regulatory compliance, and mitigate risks, serving shipping companies, governments, financial institutions, and insurers globally.

A 30-min meeting will save your team 1000s of hours

Let's Talk
Also available on:
Platform
Solutions
Customers
Resources
Company
Icon-linkedin Youtube
© 2024 ControlMonkey LTD. All rights reserved
Compliant AWS environments in minutes, with Self-service Infrastructure
Learn how to enable other teams such as Dev and QA to launch pre-defined compliant AWS environments in minutes, by using Terraform.

Contact us

We look forward to hearing from you

AWS Governance & DevOps Productivity with Terraform

Learn how how to shift-left cloud governance with Terraform in this webinar brought to you by AWS and ControlMonkey.

We look forward to hearing from you!

ControlMonkey

Terraform Best Practices with ControlMonkey Webinar

Check out our latest webinar with DoIT International.

In this webinar we showcase together with DoIT how ControlMonkey is helping DevOps teams to make the transition from ClickOps to GitOps easily with Terraform.

This website uses cookies. We use cookies to ensure that we give you the best experience on our website. Privacy policy

Accept