Empower DevOps Efforts and Ensure Compliance with Armory Policy Engine

Continuous Deployment with Policy and Compliance Management

Try out Armory Policy Engine for Free

Policy Engine is the purpose-built CI/CD Policy and Compliance Manager. Adopt modern DevSecOps practices that reduce operational risk and instability, empower your DevOps efforts, and assure compliance throughout your CI/CD lifecycle.

Create Policies to Ensure Verification at Runtime

Many policies operate as gates for teams to stop the deployment of a piece of software or infrastructure. But blocking deployments at the last minute is the antithesis of continuous deployment and should only be done as a last resort.

Inform application teams of missing requirements early on, in their non-production environments, allowing time to fix any issues before an official change review.

With Armory’s Policy Engine you can create policies to ensure verification of resources deployed at runtime, without interrupting your continuous deployment process.

Expose the policies in your non-production environments so development teams have visibility into the operational requirements as a part of the development lifecycle.

Is your team spending time making sure boxes are checked instead of creating value?

Enforce Standards to Reduce Risk and Scale DevOps Efforts

Teams deploy to non-production environments with limited involvement from other teams, usually gaining a false sense of security. This is due to limited security constraints allowing teams to experiment with different technologies and frameworks.

To deploy to production, teams require a number of manual processes, from ticketing to change review boards, that slow down the delivery process.

With Armory’s Policy Engine, you can enforce pipelines created through Pipelines-as-Code to give DevOps teams confidence that the pipelines users are defining conform to set standards.

You can also define your pipelines to validate the policies required for production deployments, rather than the traditional trial and error approach.

Collaborate Without Causing Breaking Changes

Evaluating policies and assuring compliance shouldn’t be done with a manual ticketing approach that introduces opportunity for manual error, and also reduces consistency, which reduces the overall safety of your production environments.

Turn compliance and security requirements into automated guardrails, not gates.

With Armory’s Policy Engine, you can deliver your application through the orchestration of build, provision, and deploy stages that are validated against your set policies without causing breaking changes to the work created by others.

Provide development teams the information needed to better understand the amount of risk necessary for their code changes and deployments.

Don’t let manual security practices using disparate mechanisms break down and fail.



Armory Contributed to OSS Spinnaker

Flexible and Powerful Pipelines

Custom Deployment Stages

Support for Multiple Environments

Multiple Deployment Targets (EC2, K8s, Lambda, ECS, etc.)

Blue/Green and Canary Deployments

Automated Canary Analysis

Automated Rollbacks


Expert Support and everything you need to get started deploying.

Open Source +

1 Premium Plugin

Optimized Base Configs

Support: 8×5, 60 min P0, 12 hr P1

Secrets Management


Starting at


per Successful Pipeline Execution per Month Paid annually


The added security and governance that all Enterprises need.

Essentials +

3 Premium Plugins

Support: 11×5, 60 min P0, 8 hr P1

Solutions Architect and Success Manager

Annual SRE Ops and Business Review


Starting at


per Successful Pipeline Execution per Month Paid annually


Fully managed Spinnaker in your cloud.

Enterprise +

All Premium Plugins

Support: 24×7 P0, 24×5 P1-3 30 min P0, 4 hr P1

Fully Managed Spinnaker in Your cloud (optional)


Contact Sales

Up to Unlimited Successful Pipeline Executions per Month Paid Annually

Features Comparison

Resources and FAQ

What is Policy Engine for Spinnaker?

What is Spinnaker Policy Enforcement?

How Do You Make Spinnaker More Secure?

Is Policy Engine Built on Open Policy Agent (OPA)?

What is Open Policy Agent (OPA)?

Commit. Deploy. Repeat.

Focus  on  writing  great  code,  not  deploying  it!