Protect Kubernetes Containers on AWS Using the Shared Responsibility Model

Glen Kosaka Cloud Security Leave a Comment

Deploying an AWS container security solution is a critical requirement to protect your data and assets running on AWS, including EC2, EKS, ECS, Kubernetes, or RedHat OpenShift. In its ‘Shared Responsibility Model,’ AWS states that the security responsibility is shared between AWS and the customer, you. ‘Security of the cloud’ is the responsibility of AWS, while ‘Security in the cloud’ is …

NeuVector First to Bring “Security Policy as Code” to Kubernetes Workloads

Glen Kosaka Articles

DevOps and DevSecOps teams can now more quickly deliver secure cloud-native apps by using Kubernetes Custom Resource Definitions (CRDs) to define, manage, and automate application security policies throughout the CI/CD pipeline San Diego, at KubeCon – November 18, 2019 – NeuVector, the leader in Full Lifecycle Container Security, today announced the immediate availability of the industry’s first “Security Policy as Code” …

How to Create ‘Security Policy as Code’ to Automate Application Security Policies in the CI/CD Pipeline

Glen Kosaka Cloud Security

DevOps and DevSecOps teams can now automatically deploy and update new applications securely using Kubernetes Custom Resource Definition (CRDs) As DevOps teams integrate their toolchain to enable automated deployment of container-based applications, one aspect has always slowed down a modern cloud-native pipeline: security. And while automated vulnerability scanning is now standard practice, creating the security policies to protect application workloads …

Container Segmentation Strategies and Patterns

Glen Kosaka Network Security

Segmentation, Container Segmentation, and Micro-segmentation At a recent container security conference the topic of ‘container segmentation patterns’ came up, and it became clear that many security architects are wrestling with how to best segment workload communication in the dynamic environment of containers. The question was also raised “Is the DMZ dead?” The concept of network segmentation has been around for …

NeuVector Expands Kubernetes Security Solution with Release of Containerd and CRI-O Run-Time Support

Glen Kosaka Container Security

Announcements being made at KubeCon + CloudNativeCon North America 2018 Seattle, WA – December 10, 2018 – NeuVector, the leader in Container Network Security, today announced containerd and CRI-O run-time support. The Kubernetes security company is unveiling these new additions to its platform at KubeCon + CloudNativeCon North America 2018, where NeuVector is participating as an exhibitor and conference sponsor. …