©
Back

What's Vulcan©? And What Do You Need to Know About It? Updated: 2022-08-02   |   MITRE SAF Team

The traditional security process is behind


Traditionally, security automation tooling has focused on automated hardening and automated validation through different configuration management and validation, or scanning tools. For example, many are familiar with using an Ansible playbook to harden an operating system or an InSpec profile to scan it, validating that the operating system is secure according to the guidance that says what is secure. 

There may be a new version of that operating system released. Or a new database. And what about web servers, and new applications?

New software is released every day. How can the security guidance keep up?

MITRE and VMWare fills the gap

MITRE partnered with VMWare, a major author of security guidance, to develop a way to do it better. Instead of managing excel spreadsheets through emails with limited visibility, change management control, and reusable work, this team generated an app called Vulcan© to make writing security guidance a faster, more efficient, more streamlined process.

Through Vulcan©, teams can produce STIG-ready content that can be used for generating the hardening and validation content that security teams need. This content can be sent to DISA for review to become a finalized STIG faster.

See it in action

Check out a demonstration of Vulcan© in this Vulcan© webinar.

Privacy Policy | MITRE
Deploys by Netlify

Copyright © 1997-2026, The MITRE Corporation. All rights reserved.

MITRE is a registered trademark of The MITRE Corporation. Material on this site may be copied and distributed with permission only.