Enhancing Your Stack with Ansible and SIMP

Back to Listing

Hanover, MD, 01 June 2017

SIMP (System Integrity Management Platform), powered by Puppet, is designed to establish and operate consistent state infrastructures.  Too often, I hear organizations debate over whether to use Puppet or Ansible.  This debate may be fueled by a team’s desires to reduce cost, the comfort and knowledge of staff, and a move to consolidate tooling in a given stack. My position is, why not both?  

Environments, particularly those that require high- compliance and  high- security standards, require a stable, consistent configuration. SIMP uses Puppet to accomplish this constant state, and to provide compliance over time.  SIMP, by using Puppet, is great for static configurations of the settings you need to remain constant in your environment.  Ansible can complement a SIMP stack by orchestrating repetitive tasks and performing on-demand actions.  Ansible is a great tool for repeatable and definable single actions, that  don’t require constant enforcement (actions that do not affect the overall security and compliance of the platform). like deploying and managing applications. In contrast, compliance should be steady.  It should be always on and always constant.  

So, the next time your organization is debating over whether to use Puppet or Ansible, remember that they are designed for different functions–each is excellent at its role.  They can be used together in a way that provides both the ease of use for agile automation of tasks while maintaining consistent state configurations.

Lisa is a Security and Compliance Engineer with 12 years experience supporting the DoD as an Information Security Engineer specializing in Cloud Security. Lisa is a respected security engineer in high-security environments, and brings her expertise to the commercial market. Today, Lisa continues to increase her technical experience and knowledge, working as a Director and Security Engineer for Onyx Point Inc. In this role, she can be found contributing to policy mappings and policy review, incorporating agile and collaborative methodologies, advocating for DevSecOps workflow, and assisting clients in selecting and incorporating products in IT automation/security.

At Onyx Point, our engineers focus on Security, System Administration, Automation, Dataflow, and DevOps consulting for government and commercial clients. We offer professional services for Puppet, RedHat, SIMP, NiFi, GitLab, and the other solutions in place that keep your systems running securely and efficiently. We offer Open Source Software support and Engineering and Consulting services through GSA IT Schedule 70. As Open Source contributors and advocates, we encourage the use of FOSS products in Government as part of an overarching IT Efficiencies plan to reduce ongoing IT expenditures attributed to software licensing. Our support and contributions to Open Source, are just one of our many guiding principles

  • Customer First.
  • Security in All We Do.
  • Pursue Innovation with Integrity.
  • Communicate Openly and Respectfully.
  • Offer Your Talents, and Appreciate the Talents of Others

simp, ansible, puppet

Share this story

We work with these Technologies + Partners