{"id":21764,"date":"2019-11-18T14:15:55","date_gmt":"2019-11-18T14:15:55","guid":{"rendered":"https:\/\/www.devopsonline.co.uk\/?p=21764"},"modified":"2019-11-18T14:15:55","modified_gmt":"2019-11-18T14:15:55","slug":"neuvectors-security-policy-as-code-for-kubernetes-workloads-built-for-devops-and-devsecops-teams","status":"publish","type":"post","link":"https:\/\/devopsnews.online\/neuvectors-security-policy-as-code-for-kubernetes-workloads-built-for-devops-and-devsecops-teams\/","title":{"rendered":"NeuVector’s security policy as code for Kubernetes workloads built for DevOps and DevSecOps teams"},"content":{"rendered":"
DevOps and DevSecOps teams can now more quickly deliver secure cloud-native apps by using Kubernetes Custom Resource Definitions (CRDs) to define, manage, and automate application security policies throughout the CI\/CD pipeline.<\/em><\/p>\n With the released timed to KubeCon, NeuVector \u2013 which focuses on container security throughout the full application lifecycle \u2013 has announced the\u00a0industry\u2019s first \u201cSecurity Policy as Code\u201d capability for Kubernetes services<\/a>.<\/p>\n \u00a0<\/em>The new release gives DevOps teams a way to automate container security using Kubernetes Customer Resource Definitions (CRDs) to define and manage application security policy throughout both development and production.<\/p>\n What this means is that DevOps (and DevSecOps) teams can more quickly deliver secure cloud-native apps through security policies that can be defined, managed and automated during the DevOps process. NeuVector has been continuing to expand its container security platform, most recently adding data loss prevention (DLP) and multi-cluster\/multi-cloud management capabilities.<\/p>\n Gary Duan, NeuVector\u2019s Chief Technology Officer, discussed the new release: \u201cBy introducing our industry-first Security Policy as Code for Kubernetes workloads, we\u2019re excited to provide DevOps and DevSecOps teams with even more control to automate safe behaviors and ensure their applications remain secure from ever-increasing threat vectors. We continue to build out new capabilities sought by customers \u2013 such as DLP, multi-cluster management, and, with today\u2019s release, CRD support. Our mission is acutely focused on raising the bar for container security by offering a complete cloud-native solution for the entire application lifecycle.\u201d<\/p>\n With Security Policy as Code, DevOps teams can now implement robust security policies using CRDs to deploy customized resource configurations via developer-friendly YAML files.\u00a0NeuVector\u00a0also enables DevOps teams to create CRDs that capture the full profile of application behavior \u2013 and do so in a Kubernetes-native way. The result is security policy enforcement that:<\/p>\n 8.Is extensible, to support future expansion of security policy as code to admission control rules, DLP rules, response rules and other\u00a0NeuVector\u00a0enforcement policies.<\/p>\n\n