OpsMx Announces "Code to Cloud" Application Delivery Security and Compliance for Kubernetes Environments
CHICAGO, Nov. 06, 2023 (GLOBE NEWSWIRE) -- OpsMx, the leader in secure software delivery, today announced new automated compliance capabilities for Kubernetes environments that give customers immediate visibility into their end-to-end application security posture. New auto-discovery of applications from the existing software delivery process combined with an expanded library of predefined rules, AI generation of new organization-specific policies, and cross-team collaboration simplify adoption of industry best practices. Integration with the recently announced OpsMx Deployment Firewall enables new application releases to be automatically checked for compliance during the software delivery process, while a new integration with Kubernetes admission controller can be used to block out-of-compliance releases. The announcement was made at KubeCon North America 2023 where OpsMx is demonstrating its secure software delivery solutions.
“Customers need a better way to understand their current application security posture using the tools, data, and processes they already have,” said Gopal Dommety, CEO and co-founder of OpsMx. “OpsMx is now bringing to market the automation, rules and intelligence to first show customers where they really stand and then help them take control of their application lifecycle security without disrupting how they work today.”
Automated Application Discovery and Compliance Enforcement
For each application or service, OpsMx collects data from over ninety common DevOs, security, and IT operations tools. Using this data, OpsMx synthesizes a detailed view of each release, including all steps in the release process, approvals and review, code provenance, and security checks to create a Delivery Bill of Materials. DevSecOps, SRE, and Operations teams can get a holistic view of the release process and its compliance status through the OpsMx console or through integration of OpsMx data into the organization’s preferred Internal Developer Platform (IDP).
A new integration to Kubernetes admission controller gives customers the ability to enforce software delivery compliance. If desired, Kubernetes admission control can be used to block deployment of an application that is not in compliance with the organization's defined policies.
Expanded Compliance Controls
The selected controls are those that can be effectively evaluated and enforced as part of the application development, delivery, and deployment process. Many of these same controls are also required for HIPAA, PCI DSS, and other compliance standards.
Customers can easily supplement these predefined compliance policies with organization-specific policies using the new Rules Genie. The Rules Genie uses generative AI to convert plain language policy statements into “policy as code” Rego scripts. Policies created with the Rules Genie can be used with any solution that supports the Open Policy Agent (OPA). Customers can also directly edit policy scripts for further customization, or can directly code their own policies in Rego. The result is a specific, customized, and adaptable set of compliance controls.
All product and company names herein may be trademarks of their registered owners.
Lunch - For Diamond, Enterprise, Platinum, Super Pass, Exhibitor/Conference, Speaker, Press Pass Holders
Building Secure and Responsible Applications with Generative AI
Cybersecurity Solutions Session