Fugue Reviews & Product Details

Fugue Overview

What is Fugue?

Fugue is enterprise cloud security developed for engineers, by engineers. Fugue prevents cloud misconfiguration and ensures continuous compliance with enterprise security policies. Fugue provides full visibility into the security posture of AWS, Azure and Google Cloud Platform. With Fugue you have intelligent guardrails that use baseline enforcement to eliminate policy violations and cloud misconfiguration. Fugue’s API enables teams to “shift left” and use CI/CD pipelines to validate infrastructure compliance earlier in the software development lifecycle. Fugue automates compliance validation for CIS Foundations Benchmarks, GDPR, HIPAA, ISO 27001, NIST 800-53, PCI, and SOC 2. Customers such as AT&T, Global Giving, SAP NS2, TravelBank, Emsi and Sparkpost trust Fugue to protect their cloud environments.

Fugue Details
Website
Discussions
Fugue Community
Languages Supported
English
Product Description

Fugue identifies security and compliance violations in cloud infrastructure and ensures they are never repeated


Seller Details
Seller
Fugue
Company Website
Year Founded
2013
HQ Location
Frederick, MD
Twitter
@FugueHQ
1,070 Twitter followers
LinkedIn® Page
www.linkedin.com
44 employees on LinkedIn®

Overview Provided by:
Show More

Fugue Screenshots

Answer a few questions to help the Fugue community
Have you used Fugue before?
Yes

Fugue Reviews

Write a Review
Filter reviews
LinkedIn®
Connections
Showing 7 Fugue reviews
Showing 7 reviews
Filter Reviews
Filter Reviews
Sort by
Ratings
Company Size
User Role
For Category
All Industries
Region
Already have Fugue?
Write a Review
Systems Architect
Mid-Market(51-1000 emp.)
Validated Reviewer
Verified Current User
Review source: Organic
What do you like best?

Fugue allows me to quickly identify what parts of our cloud infrastructure are not compliant with our policies, understand why that policy is important, what other components would be affected and then gives me the steps to remediate the problem. Once everything is compliant, Fugue can monitor for drift and automatically correct things that go out of compliance. The product already had a bunch of great pre-made policies for common compliance types, but you can also use an industry standard and open language to create custom rules for any compliance that your company may have. Using the built-in visualizer lets you quickly see how your infrastructure components tie together and how the compliance failure in one area can affect other parts of your product.

Fugue, the company, has been laser focused on cloud compliance for years. Their experience has led to an industry best product for ensuring that your cloud environment is secure and stays that way. Compliance and drift monitoring are critical for anyone running production workloads in the cloud, and Fugue is the absolute best solution to provide those. Review collected by and hosted on G2.com.

What do you dislike?

Fugue has the experience and knowledgable staff to built the best-in-class compliance monitoring and enforcement solution, but sometimes there are features of the product that I would like to take advantage of, which don't yet fit with how I organized my cloud environment many years ago. If I were building our cloud environment today, green field, I would have used current best practices which would better match up with how Fugue expects thing to be laid out. They are always improving the product and soon this won't be a concern at all. Overall this affects very few parts of our usage of Fugue, but it can be frustrating to have to wait for a feature to be rolled out. Review collected by and hosted on G2.com.

What problems are you solving with the product? What benefits have you realized?

GlobalGiving uses Fugue to ensure that our environment is compliant with PCI, and that nothing changes within our environment which would then violate our policies. Fugue continuously monitors for changes that might cause compliance violations or weaken our security, then alerts our staff so we can fix things before they cause any real problems. We have reduced the number of accidental changes, and completely eliminated changes which were not made through our Infrastructure as Code solution. Review collected by and hosted on G2.com.

Show More
Show Less
IT Manager
Mid-Market(51-1000 emp.)
Validated Reviewer
Verified Current User
Review source: Organic
What do you like best?

Fugue has simplified the process of maintaining and demonstrating compliance for our cloud environment, a task that now requires fewer resources and a fraction of the time. With Fugue, we now have access to the full configuration and compliance history of our cloud and can analyze that data and create our own custom reports in ways we haven't been able to before. And the Fugue team has been great to work with and committed to our success with the product. Review collected by and hosted on G2.com.

What do you dislike?

Honestly, there's nothing we dislike.

Like every system, there are a few bugs. But their support team has been very responsive to my engineers, working with them to either correct any bugs or answer any of our questions. Review collected by and hosted on G2.com.

What problems are you solving with the product? What benefits have you realized?

Our biggest problem was to ensure that our SaaS products hosted on AWS met various security requirements (NIST, ISO, GDPR, SOC-2, etc).

Fugue is able to do this easily.

We are NIST-compliant, and we had a potential customer require us to be ISO-compliant. By going into Fugue and turning on the ISO compliance family, we were able to demonstrate that we were compliant at that level as well. That would have taken a month of engineering time to demonstrate, potentially losing that customer. Review collected by and hosted on G2.com.

Show More
Show Less
Director of Infrastructure Services
Mid-Market(51-1000 emp.)
Validated Reviewer
Verified Current User
Review source: Organic
What do you like best?

We are migrating a large production workload from a Managed AWS Provider account to our own AWS accounts. We were in need of a product to ensure our new accounts were configured properly and HIPAA compliant. We evaluated a number of vendors over a few months that provided automated AWS configuration compliance scans. We choose Fugue based on ease of use, feature support, and HIPPA compliance support. We have been using Fugue for a few months now and it has been a great tool that helps us ensure our new AWS accounts are configured securely and stay compliant. In our testing we also found Fugue supported the most HIPAA controls across the various AWS services we use.

The interface is easy to use and understand. Rules seem to be well documented when more understanding or research is required.

The Visualizer tool is a nice bonus. It provides a graphical representation of our AWS accounts. You can zoom in and see your compliance at the object level.

The company seems very responsive to new ideas and feature requests. Review collected by and hosted on G2.com.

What do you dislike?

While HIPAA compliance is our most important control point we would like to see additional compliance offerings like HITRUST. Review collected by and hosted on G2.com.

What problems are you solving with the product? What benefits have you realized?

We are ensuring our AWS accounts are configured with best practices and that they stay HIPAA compliant. Review collected by and hosted on G2.com.

Show More
Show Less
Small-Business(50 or fewer emp.)
Validated Reviewer
Verified Current User
Review source: Organic
Business partner of the seller or seller's competitor, not included in G2 scores.
What do you like best?

Upfront - we (New Light Technologies) are a Fugue partner but this does not color my comments below. We became a partner due to my appreciation for the value Fugue provides.

- Immediate value: as soon as you turn it on Fugue will help you secure your environments and save money. You will learn about resources that you likely are unaware of.

- Visibility: There is no easier way to track what has changed in your cloud environments, across multiple vendors. I've tried other tools and writing my own scripts.

-Trusted insight: When Fugue says your services are or are not compliant with a sec family (e.g. HIPAA, SOC, PCI, etc. ) you can trust their analysis.

-Customer focused - Fugue will work with you if you have needs or ideas that that they have not implemented. Also, their development roadmap is inline with what we, cloud security folks, need. And they are aggressive about releasing new features. Review collected by and hosted on G2.com.

What do you dislike?

-Not all services in AWS and Azure are covered: I realize this is a reality of developing software like Fugue and it's not that big of a deal but sometimes we run into a service that is not tracked. When we come across these rare situations, we submit a feature request and Fugue is quick to add the new service coverage.

-Not all of my customers use Fugue: We encounter situations where customers are not Fugue users. This makes getting them compliant tough, and when we are forced to use other products in the market or attempt to validate things on our own, the true value of Fugue becomes apparent. Review collected by and hosted on G2.com.

Recommendations to others considering the product:

Give it a try via their free trial. The software sells itself. Review collected by and hosted on G2.com.

What problems are you solving with the product? What benefits have you realized?

-Getting cloud environments safe and compliance with security families like: SOC, PIC, HIPAA, NIST 800-53, etc.

-Ensuring that compliant cloud environments do not deviate from the approved configuration. This is done with drift detection and remediation.

-Discovering the breadth of our cloud accounts via tools like Fugue's Visualizer. Review collected by and hosted on G2.com.

Show More
Show Less
AI
Mid-Market(51-1000 emp.)
Validated Reviewer
Verified Current User
Review source: Organic
What do you like best?

I’ve been working with the team at Fugue for almost a year now. Their customer service is excellent for working on issues from more of a collaborative approach than just a “Helpdesk” aspect. Ankush and Amelia have been a pleasure to work with and get to know professionally. It is apparent that this company believes in the services they provide. They have accommodated demos, deep dives and they welcome feedback on the product. We have more of a partnership with Fugue than just a vendor relationship. I would highly recommend this product to anyone looking for a great way to scan for Compliance and share these details with teams whether it is SRE, IT or Risk and Compliance focused. Review collected by and hosted on G2.com.

What do you dislike?

Nothing specific at this time - new dashboard reporting coming soon! Review collected by and hosted on G2.com.

What problems are you solving with the product? What benefits have you realized?

Fugue provides different types of scans related to security industry practices for ease of knowing how to prioritize work for teams. Review collected by and hosted on G2.com.

Show More
Show Less
AI
Enterprise(> 1000 emp.)
Validated Reviewer
Verified Current User
Review source: Organic
What do you like best?

Ability to visualize and easily navigate our cloud infrastructure, getting a birds-eye view of our configuration items and policies, with custom rules, alerts, and exceptions as needed. The policy enforcement is a powerful tool for correcting baseline drift. The front-end of the app is very well made so there are no UX problems in my view. I use a lot of tools, and am not shy about delivering the news when it is painful to use- Fugue is great to use. Review collected by and hosted on G2.com.

What do you dislike?

If I had to pick something annoying, I guess the visualizer could render faster. Review collected by and hosted on G2.com.

What problems are you solving with the product? What benefits have you realized?

Change/ configuration management and visibility into our cloud security posture, with the ability to enforce policy. Provides a key component for DevSecOps. Review collected by and hosted on G2.com.

Show More
Show Less
Chief Technology Officer
Mid-Market(51-1000 emp.)
Validated Reviewer
Review source: Invitation from the seller
What do you like best?

I love that Fugue makes it simple to audit my environment against security standards. With just a few clicks, I can register my AWS environment and get a comprehensive inventory of all the resources we have, then evaluate all of those resources. Then, as an added bonus, the ongoing evaluation of our environment helps me understand if we've had configuration drift.

In addition, the OPA (Open Policy Agent) framework still seems to be gaining in market share - with Kubernetes throwing their weight behind it. With this, my usage of Fugue will increase in that area as well. Review collected by and hosted on G2.com.

What do you dislike?

I haven't used the API *yet* for Fugue, more because everything that I need to do has been accomplished through their GUI. In addition, picking up OPA (Open Policy Agent) will take some time, as it's something new which we have not done before. Review collected by and hosted on G2.com.

Recommendations to others considering the product:

If you are thinking to try Fugue, take advantage of their free trial first - it will help you understand the product capabilities. (You will probably get your feelings hurt, though, as almost every configuration out there will have a few flaws that Fugue will find!) Review collected by and hosted on G2.com.

What problems are you solving with the product? What benefits have you realized?

We monitor our infrastructure that is running on Amazon Web Services with Fugue. We have seen a benefit of much faster ability to perform comprehensive audits of our deployed resources. In addition, having Fugue identify which resources are not tagged helps us ensure a consistency which we did not have before. Review collected by and hosted on G2.com.

Show More
Show Less