MediaMarkt's Journey to Compliance With Terraform
MediaMarktSaturn uses Terraform Enterprise to drive compliant infrastructure consumption across 70 teams. This is their journey to proactive policy as code.
Your challenge
Enterprises have always trusted systems of record with their most important information: customer accounts, sales data, employee records, and much more.
As mission-critical systems and business data move to the cloud, it’s time for a “cloud system of record” — a secure place to store all the metadata for your modern infrastructure systems.
The cloud system of record streamlines compliance and audits while ensuring best practices are followed for infrastructure provisioning, security, networking, and application deployments.
Use HashiCorp tools to store and manage infrastructure state files, secrets, service location and health, as well as application dependencies, and build artifacts.
Reduce risk and improve compliance
Create, track, and secure essential metadata and artifacts. Use consistent patterns at enterprise scale. Control and optimize cloud spending.
HashiCorp Products used
- Terraform
- Vault
- Consul
- Nomad
- Waypoint
- Packer
Outcomes
- 1
Consistent workflows drive uniform cloud patterns at scale
Scale cloud success with repeatable workflows for infrastructure provisioning, secrets management, service networking, and application deployment. - 2
Improve compliance with corporate policies and industry regulations
Track and verify that standards are met for data protection, network encryption, permissions and access levels, as well as CVE remediation. - 3
Optimize your cloud spending
Ensure every new environment meets corporate cost standards while enabling self-service.
[With Terraform Enterprise], all users immediately see if their code is compliant or not.
Bjoern Jessen-Noak
MediaMarktSaturn
MediaMarktSaturn
Run a cloud system of record to improve security and simplify audits at scale
Use a single workflow to secure, govern, and audit any infrastructure
-
Track and manage the state of your infrastructure with HashiCorp Terraform’s infrastructure as code approach.
-
Increase productivity with a consistent workflow and reduce time to on-board new developers and support new cloud technologies.
-
Implement policy as code enforcement with HashiCorp Sentinel and Run Tasks for security, compliance, and operational best practices across all cloud provisioning.
Manage and rotate secrets. Encrypt everything.
- Use dynamic secrets and HashiCorp Vault to improve security. Generate time-based access credentials dynamically based on policies and revoke access when the lease expires.
- Encrypt application data with one centralized workflow that resides in untrusted or semi-trusted systems outside of Vault.
- Adopt a zero trust model with identity-based access. Authenticate and access different clouds, systems, and endpoints using trusted identities.
Track services centrally and securely connect applications across environments
- Know what services are running at any given time with HashiCorp Consul. Track service location and health with a central registry.
- Ensure all service-to-service communication is authorized and encrypted.
- Control access to services at the point of entry and centralize traffic management.
Know what’s running in your environment with container lifecycle automation
- Track and audit application dependencies and build artifacts with HashiCorp Waypoint.
- View logs, builds, and releases with a single UI.
- Use HashiCorp Nomad and a single workflow to deploy new and legacy applications across multiple data centers, regions, and clouds.
Learn from your peers
Many media brands, one workflow
Digital marketing leader uses HashiCorp Terraform Cloud to launch online comparison tools faster, while reducing costs.
Multi-Tenant Workloads & Automated Compliance with Nomad & the HashiStack at Exact Sciences
See how Exact Sciences uses HashiCorp Nomad, Terraform, Vault, and Consul ACLs to operate workloads within a highly regulated industry.
Add to your cloud system of record with HashiCorp partners
Move to the cloud with confidence. HashiCorp has deep partnerships with hyperscale providers and experienced system integrators to help you get to the cloud faster.
Introduction to Sentinel - HashiCorp's Policy as Code Framework
Learn about Sentinel, a powerful policy as code language and framework built-in to HashiCorp Enterprise tooling to allow guardrails, business requirements, legal compliance, and more to be actively enforced by running systems in real-time.
Armon Dadgar
Co-founder & CTO, HashiCorp
Take the next step
Learn how we can help you build and run a cloud system of record for your enterprise.
Resources
TMX Group: Up and to the Right
Canadian stock exchange provider sees big gains in cloud provisioning for developers with HashiCorp Terraform, while keeping a close watch on security.
View
- What Samsung Learned From Using Terraform to Build Bixby 2.0, Knox, and RCS
- Building a cloud platform using Terraform Enterprise, Ansible Tower, and Service Now at FIS
- Terraform and regulated financial services at the German stock exchange
- GDPR is Here. Learn How HashiCorp Vault Can Help with Compliance
- Managing PCI compliant architectures at scale with Terraform & Vault
- Managing Target's Secrets Platform with HashiCorp Vault
- Sentinel Policy as Code: Use Cases for Terraform, Vault, Nomad & Consul
- Cloud Compliance & Management with Terraform - Tracking Infrastructure, Audit Logging