The California-based company announced new features and integrations for maintaining data security, privacy compliance, serverless security and access & policy control.Â
NeuVector released the latest version of its Kubernetes security platform with updated compliance reporting and enforcement. The cloud-based platform for full lifecycle container security includes compliance reporting and enforcement for PCI DSS, GDPR, and other industry and government standards for data security.
See Also: How Automated Kubernetes Audit Log Monitoring Can Harden Container Securit
The company also added new workflows for continuous tracking of compliance enforcement as well as staying on top of critical vulnerabilities. Niteen Kole, Solutions Designer at Cooperators Canada told Toolbox, “As we continue to automate and expand container security at Cooperators, the ability to add secrets auditing and other compliance checks provides another valuable risk assessment tool.â€Â
DevOps will be a major benefactor with vulnerability and compliance tracking workflows. Controls such as vulnerability management, network segmentation, and firewallingOpens a new window can be managed while consistency can be measured through audit reports. Kole further added, “In addition, our container security program will expand to enable different users from DevOps, operations, security and compliance teams to utilize the security platform, requiring more granular controls which can be customized for each role. These new capabilities in NeuVector enable us to continue to expand our container deployments securely.â€
Additionally, the NeuVector cloud platform includes role-based access controls (RBAC), with which organizations can deploy the platform for multiple departments, divisions, and can rely on managed service providers. Each employee with a different role, and involved in different tasks like CI/CD integration, DevOps, network security, operations, namespace users, etc can have different access controls.Â
Part of NeuVector’s announcement pertains to the cloud platform’s integration with Open Policy Agent (OPA). OPA provides a unified toolset and framework for policy analysis and review across the entire cloud-native stack. Sean McCormick, VP of Engineering at Element Analytics told Toolbox, “The OPA integration and serverless security additions will also be valuable as we continue to enhance and expand our cloud security initiatives.â€
Learn More: Guide to Automating Container Security Scans in the CI/CD Pipeline for DevOps Teams
NeuVector’s platform now also supports serverless security for AWS LambdaOpens a new window . With it, users can leverage vulnerability scanning and risk assessment for serverless functions based on Java, Node.js, Python, and Ruby.Â
Fei Huang, Chief Strategy Officer at NeuVector said, “Our new granular RBAC security controls, hyperscale image scanning capabilities, AWS Lambda serverless function protections, and OPA integration each contribute to the ease and effectiveness with which enterprises can leverage NeuVector to safeguard containerized environments across the full application lifecycle and reliably achieve their security goals.â€
The new version of the NeuVector platform will be released at the upcoming KubeCon + CloudNativeCon Europe 2020.
Let us know if you liked this news on LinkedInOpens a new window , TwitterOpens a new window , or FacebookOpens a new window . We would love to hear from you!