StackRox

stackrox logo
2014
Mountain View, CA, USA
https://www.stackrox.com/
Twitter
Facebook
LinkedIn
Instagram
Youtube
GitHub

The StackRox Kubernetes Security Platform protects your applications across the entire container life cycle. The software discovers your full container environment, ensures assets adhere to your security policies, and identifies and stops malicious actors. Continuously improving security – that’s StackRox.

Containers offer intrinsic security benefits but at the same time increase the attack surface. The StackRox Kubernetes Security Platform maximizes the inherent security advantages of containers – immutability and declarative configuration – to help you harden your container environment. Our software integrates with tooling across the container ecosystem to provide the industry’s best risk profiling, highlighting those assets that need an immediate fix.

Why Customers Choose StackRox?

  • Reduce your Attack Surface: StackRox enforces service-centric deployment policies on vulnerabilities and configurations in your images and orchestrator settings to mandate fixes during the build phase. The StackRox software can block services from deploying if they violate critical policies. You can also set the StackRox software to allow services with non-critical risks to deploy, but immediately issue notifications to your dev teams with remediation suggestions and instructions. Finally – you can run fast AND run safe.
  • Profile Runtime Risk: StackRox prioritizes the most critical security issues to address. The StackRox software provides this risk profiling by tapping into a broad set of factors, including orchestrator settings, network policies, secrets usage, container configuration, and other metrics. StackRox provides an automated means to profile and monitor your highest-risk assets during runtime, automatically elevating those assets with potential signs of attacker activity to the top of your queue. Finally – a pragmatic, context-based approach to managing your security program.
  • Detect and Respond: StackRox leverages continuous machine learning to adapt its understanding of your application environment. Constantly tuning its settings, the StackRox software minimizes false positives and false negatives. You can also set response options, including alerts and killing containers, to meet your needs. Finally – detection that adapts to the dynamic world of containers.

Security Across Your Entire Container Life Cycle.

Read Profile

stackrox
StackRox + PagerDuty - Know about Your Kubernetes Security Issues, Now
Nov 15, 2019   |  By Michelle McLean
StackRox has pioneered Kubernetes-native container security, bringing rich context and infrastructure-native enforcement to protecting Kubernetes and containers across build, deploy, and runtime. We recognize the importance of getting critical alerts about this cloud-native stack to the right team, at the right moment – by integrating with PagerDuty, we broadened the choices on how to do so.
stackrox
StackRox - Unique Innovations for Hardening Kubernetes
Nov 13, 2019   |  By Michelle McLean
Just in time for KubeCon next week, we’re announcing today the 3.0 version of our StackRox Kubernetes Security Platform. We’re really proud of the industry-first capabilities we’re introducing with this upgrade, enabling our customers to better harden their Kubernetes and container environments.
stackrox
SOC 2 Compliance in Container and Kubernetes Environments
Nov 7, 2019   |  By Michelle McLean
SOC (System and Organization Controls) 2 is a set of compliance requirements that applies to companies that store, process, or transmit customer data. A broad range of companies, including SaaS providers, may need to comply with SOC 2 to be competitive in the market and keep customer data secure. Public cloud providers such as Amazon Web Services, Google Cloud Platform, and Microsoft Azure are subject to SOC 2 and make their audit reports publicly available.
stackrox
Patches for CVE-2019-11253 released: Why you should upgrade your Kubernetes clusters immediately
Oct 16, 2019   |  By Malte Isberner
The Kubernetes team has released patches for the recently disclosed “Billion Laughs” vulnerability, that allowed an attacker to perform a Denial-of-Service (DoS) attack on the Kubernetes API server by uploading a maliciously crafted YAML file.
stackrox
StackRox Secures Kubernetes and Simplifies SOC 2 for FinTech Disruptor YayPay
Oct 16, 2019   |  By Michelle McLean
When you’re focused on revolutionizing the Accounts Receivable (AR) market, feature innovation and delivery are your lifeblood, and containers and Kubernetes become your currency. Protecting customer data on that cloud-native infrastructure is essential to successfully disrupting this FinTech market. YayPay is proud of its digital disruptor status, and StackRox is proud to have enabled the security and data protection YayPay needs to fuel customer growth.
More
stackrox logo
Docker Container and Kubernetes Security: An Evaluation Guide
Mar 3, 2019   |  By StackRox
Download our definitive guide to implementing a container security strategy across the application development life cycle.
stackrox logo
PCI Compliance in Container Environments: A Definitive Guide
Mar 1, 2019   |  By StackRox
Download this guide to learn about the container security challenges to complying with PCI DSS and how StackRox helps bring your container environment into compliance with PCI DSS.
stackrox logo
Report: The State of Container Security
Feb 1, 2019   |  By StackRox
The State of Container Security report was written to understand how container and Kubernetes adoption trends intersected with security concerns.
stackrox logo
Top Five Kubernetes RBAC Mistakes to Avoid
Jan 1, 2019   |  By StackRox
If you run workloads in Kubernetes, you know how much important data is accessible through the Kubernetes API—from details of deployments to persistent storage configurations to secrets. The Kubernetes community has delivered a number of impactful security features in 2017 and 2018, including Role-Based Access Control (RBAC) for the Kubernetes API.
stackrox logo
Hardening Docker: A Security Toolkit
Dec 1, 2018   |  By StackRox
Download our security toolkit for valuable tips and practical suggestions on how to harden containers and hosts as a first step toward a more secure container environment.
More
Interview: StackRox's Ali Golshan with MediaOps' Alan Shimel
Oct 11, 2019   |  By StackRox
During this interview, StackRox's Ali Golshan discusses the adoption of Kubernetes and its prevalence today. Watch now to learn more about microservices, containers and Kubernetes.
Kubernetes Security Best Practices by Connor Gorman
Oct 9, 2019   |  By StackRox
In this presentation, StackRox's Conner Gorman focuses on the Kubernetes security landscape and presents some best practices aimed at reducing the risk and attack surface of your clusters.
StackRox in 2 minutes
Jul 12, 2019   |  By StackRox
Watch our 2 minute video for an overview of the StackRox Kubernetes Security Platform.
Operationalizing Kubernetes Security Best Practices
Mar 27, 2019   |  By StackRox
As more companies scale up their Kubernetes adoption, they face growing security challenges. Kubernetes itself provides many native controls that can help organizations improve their security posture, but often they aren’t fully utilized.
TFiR - Ali Golshan, Co-founder & CTO - StackRox
Mar 11, 2019   |  By StackRox
In this interview, Ali Golshan - Co-founder & CTO of StackRox, talks about complete container security.
More

Copyright © 2019 OpsMatters™. All rights reserved.