Ermetic has launched new Kubernetes safety posture administration capabilities to its cloud-native utility safety platform (CNAPP). Clients can benefit from the automated options to find and repair misconfigurations, compliance violations, and danger or extra privileges in Kubernetes clusters. Ermetic CNAPP supplies an in depth stock of the assets inside all Kubernetes clusters, performs steady posture evaluation and prioritization of dangers, and gives remediation steering, the corporate mentioned.
The platform queries the Kubernetes API for every cluster, and makes use of agentless scanning and evaluation of node configurations and containers. These findings are then mixed with alerts from the platform’s cloud workload safety (CWP), infrastructure as code (IaC) scanning, cloud safety posture administration (CSPM), and cloud infrastructure entitlement administration (CIEM) performance to supply full visibility into threats, the corporate mentioned. Clients can get a listing of prioritized vulnerabilities inside the context of cloud configuration, permissions, and community entry. Clients also can implement least privilege for customers and providers utilizing the interior Kubernetes role-based entry controls.
Whereas Kubernetes is highly effective for deploying and managing containerized purposes throughout multiclouds, it will also be difficult for safety groups to successfully observe configuration modifications, handle secrets and techniques, guarantee correct role-based entry management, and establish vulnerabilities. “Present approaches to Kubernetes safety usually present a siloed view, which leads to excessive false constructive charges,” Ermetic’s chief product officer Sivan Krigsman mentioned in a press release.