Prowler February Newsletter

This is a republishing of our monthly newsletter.

Do you have a Prowler success story you’d like to share? Let us know and we’ll send you some swag!

Hey there, Prowler community!

We’re back with another round of updates, insights, and events to keep your cloud security game strong. This month, we’re diving into the latest in multi-cloud security, automation, and the growing Open Cloud Security movement.

We’ve also got new Prowler features to share, a fresh Risky Business demo, and some great community content to help you get even more out of Prowler. Plus, if you’re heading to RootedCON in Madrid or RSAC in San Francisco, we’ll be there too—come say hi.

Let’s get into it.

From the Prowler Team

Why We Need the Open Cloud Security Movement

Cloud security is broken, and we need to fix it—together. This in-depth post from our founder and CEO explains why the Open Cloud Security Movement is the future and how we’re working toward transparency, collaboration, and security that works across all cloud environments.

Product Updates

What’s New in Prowler 5.3?
Prowler 5.3 is here. This release brings:

• Microsoft365 security checks to the CLI
• UI upgrades for a smoother experience
• Expanded security coverage across AWS, Kubernetes, and Microsoft365 in the CLI

Read our blog or check out the release notes for all the details.

Resource Spotlight

Automating Cloud Security Audits with Prowler
Read the full guide on setting up automated AWS security assessments and integrating Prowler into your security workflows.

Prowler Product Demo on Risky Business
We joined Risky Business to give a hands-on walkthrough of Prowler’s security capabilities, including real-time compliance checks and misconfiguration detection across AWS, Azure, GCP, and Kubernetes.

Implementing Prowler CSPM with Google Cloud Platform
This guide walks you through a complete Prowler security assessment on GCP, helping teams strengthen their cloud security posture.

Community Highlights

Strengthening Amazon EKS Security with Prowler: A comprehensive guide | Amazon Web Services
Check out this Amazon AWS video on securing EKS, starring your favorite open source cloud security tool!

Prowler Ranked #1 in CSPM and #4 in Cloud Security
Prowler is ranked #1 in Cloud Security Posture Management (CSPM) and #4 overall for cloud security on CloudSecTools. We’re grateful to the security community for recognizing the power of open-source cloud security—and we’re just getting started.

Automating Security Assessments with Prowler and EventBridge
Part 2 of this Cybr guide details how to set up automated security checks using Prowler and AWS EventBridge.

Get Notified When Prowler Runs AWS Assessments
Part 3 of this Cybr guide shows how to receive notifications when Prowler assessments run, helping you stay informed in real time.

Automating Compliance with Prowler and Terraform AWS Modules
Are you navigating compliance frameworks like SOC 2, CIS, and HIPAA and looking for a way to simplify the process? In his talk at DevOps Barcelona, Anton Babenko—creator and maintainer of the terraform-aws-modules projects—breaks down these frameworks and their challenges, then shares an efficient, open-source approach to compliance highlighting Prowler.

Cybersecurity Project: Automating Audits in AWS With Prowler
Want a beginner-friendly, step-by-step guide to automating audits in AWS? In this episode of GRC for Mere Mortals, Nicole Enesse walks through using Prowler to automate security assessments, generate reports, and integrate findings into a risk management workflow.

This is a great resource for GRC professionals, security teams, and anyone looking to improve AWS security without extra complexity.

Upcoming Webinars and Learning Labs

We’ve got a great lineup of free, hands-on sessions this month. Register now:

• Getting Started with Prowler SDK Core – February 27
• Getting Started with Prowler Detections and Remediations – March 13
• Getting Started with Prowler and Compliance – March 20

Prowler In Real Life

RootedCON March 6-8 | Madrid
Join some of the Prowler engineers at RootedCON Madrid, this March, we will be at the CriptoredCON track. Come to see us, we have limited edition swag and be available to answer all your burning Prowler questions.

RSAC April 28 – May 1 | San Francisco
Our team will be attending RSAC in San Francisco. Be sure to find us and say hello for some exclusive RSAC swag, or even a pint with our Founder & CEO Toni de la Fuente (if there isn’t a marathon that weekend, that is).

That’s it for this month. Don’t forget to check out the Open Cloud Security initiative: Keeping security transparent, collaborative, and open! See you in the Slack community or at one of our upcoming events.