DevOps.com

  • Latest
    • Articles
    • Features
    • Most Read
    • News
    • News Releases
  • Topics
    • AI
    • Continuous Delivery
    • Continuous Testing
    • Cloud
    • Culture
    • DataOps
    • DevSecOps
    • Enterprise DevOps
    • Leadership Suite
    • DevOps Practice
    • ROELBOB
    • DevOps Toolbox
    • IT as Code
  • Videos/Podcasts
    • Techstrong.tv Podcast
    • Techstrong.tv - Twitch
    • DevOps Unbound
  • Webinars
    • Upcoming
    • On-Demand Webinars
  • Library
  • Events
    • Upcoming Events
    • On-Demand Events
  • Sponsored Content
  • Related Sites
    • Techstrong Group
    • Container Journal
    • Security Boulevard
    • Techstrong Research
    • DevOps Chat
    • DevOps Dozen
    • DevOps TV
    • Techstrong TV
    • Techstrong.tv Podcast
    • Techstrong.tv - Twitch
  • Media Kit
  • About
  • Sponsor
  • AI
  • Cloud
  • Continuous Delivery
  • Continuous Testing
  • DataOps
  • DevSecOps
  • DevOps Onramp
  • Platform Engineering
  • Low-Code/No-Code
  • IT as Code
  • More
    • Application Performance Management/Monitoring
    • Culture
    • Enterprise DevOps
    • ROELBOB
Hot Topics
  • Postman Releases Tool for Building Apps Using APIs
  • What DevOps Leadership Should Look Like
  • Things We Should Acknowledge, Part One: Hiring Sucks
  • HPE to Acquire OpsRamp to Gain AIOps Platform
  • Oracle Makes Java 20 Platform Generally Available

Home » KubeCon + CNC EU 2022 » KSPM and Compliance simplified with Runecast

KSPM and Compliance simplified with Runecast

By: Veronica Haggar on May 16, 2022 Leave a Comment

London, UK, MAY 16, 2022 – Runecast Solutions Ltd., a Gartner Cool Vendor and leading provider of simplified security and operational transparency for Kubernetes workloads, is pleased to announce that its patented enterprise platform Runecast (formerly Runecast Analyzer) will expand its current Kubernetes Security Posture Management (KSPM) capabilities with advanced image scanning and CI/CD integration. This will enable Runecast customers to jump-start Q3 2022 with proactive Kubernetes vulnerability management, from code to deployment.

Recent Posts By Veronica Haggar
  • ConnectALL Expands Betty Knight ConnectALL Scholarship Effort with Second Award
  • DevOps Done Right: How to Succeed in DevOps From Day One
  • ClearML Releases New Reports Feature to Share Real-Time Results of Machine Learning Projects and Ignite ML Collaboration Across the Enterprise
More from Veronica Haggar
Related Posts
  • KSPM and Compliance simplified with Runecast
  • Kasten by Veeam Announces NEW Kasten K10 V5.0 with Enhanced Kubernetes Security, Streamlined CI/CD Pipelines and Ecosystem Advancements
  • Sysdig Introduces Sysdig Advisor to Drastically Simplify Kubernetes Troubleshooting
    Related Categories
  • KubeCon + CNC EU 2022
  • Latest News Releases
    Related Topics
  • KubeCon + CloudNativeCon EU 2022
  • Runecast
Show more
Show less

Runecast is an IT Security and Operations platform designed to enable CISOs, CIOs, and their Security and Operations teams with proactive Kubernetes Security Posture Management (KSPM) and show them the most vulnerable areas to focus on first. 

“Kubernetes is no longer the new kid on the block, it’s a well  established container orchestration platform, running mission critical workloads and needs to be treated seriously when it comes to security and compliance,” said Runecast Head of Product Markus Strauss. “Runecast is here to simplify K8s security and speed up operations.”

According to the “State of Kubernetes 2022” report by VMware, 97% of organizations have concerns about K8s security.

Runecast a ‘High Performer’ (via G2 reviews)

In April 2022, Runecast announced its rank as a ‘High Performer’ in the Spring 2022 G2 Grid® Reports for the categories Security Risk Analysis, Cloud Workload Protection Platforms (CWPP), Vulnerability Scanner, Cloud Compliance and Cloud Security.

Running securely on-premises, Runecast automates security compliance checks for Kubernetes with insights into what is happening both on-premises and in the cloud. No sensitive company, employee, or customer data needs to leave the organization. Runecast aims to make vulnerability management easy with CVEs listed in the dashboard alongside vulnerabilities which are known to have been exploited, according to CISA’s KEV catalog.

Expanded Runecast Kubernetes coverage a ‘shift left’

Upon deploying Runecast (in a matter of minutes), IT teams see a list of critical issues and steps to remediate according to Kubernetes Best Practices. Hybrid environments can also see issues for AWS, Azure, VMware, Windows and Linux – all from the same dashboard.

New Kubernetes intelligence and capabilities coming to Runecast at the end of Q2 include:

Image Scanning

Our Kubernetes vulnerability management will extend from the cluster down to the nodes by providing vulnerability scanning for deployed Kubernetes container images. This will provide customers the ability to automate vulnerability management for Kubernetes, ensuring that Kubernetes deployments meet best practices, security and compliance requirements.

CI/CD Integration

The new version of Runecast will bring container-scanning capabilities for Dev and DevOps teams by integrating directly with their CI/CD pipeline, to ensure that ‘rapid develop and deploy’ approaches will be secure. CI/CD integration will allow customers to have limiting criteria at which point a pull request etc. will be automatically rejected. Runecast CI/CD integration will on-demand scan the Template or Manifest for the container to be deployed as part of the pull request and if a predetermined amount of Vulnerabilities are present on that requested container image, it will automatically deny the pull request and prevent this container from being deployed.

Extended (Agent-Based) Collection

The Runecast platform will allow teams much greater insight into the actual nodes running on the Kubernetes cluster and will greatly increase the amount of vulnerabilities that Runecast is able to proactively discover.

How Runecast works for K8s clusters

Runecast offers configuration drift management, security compliance auditing and proactive issues management for your Kubernetes deployments. It automates Kubernetes configuration analysis by auditing common cluster operational and security best practices for KSPM, including the CIS Benchmark (1.6.0) for Kubernetes security. IT teams can deploy Runecast directly to Kubernetes (using a Helm chart) and immediately get automated Kubernetes configuration analysis at the node-level, cluster-level, and workload level.

“By its very nature, Kubernetes is a highly flexible container orchestration system and is deployed across hybrid, multi-cloud, private cloud or on-prem environments. Runecast helps customers where their K8s workloads run, irrespective of their underlying infrastructure,” said Mr. Strauss “Using Runecast, our customers have the ability to scan their infrastructure against 10+ security standards straight out of the box.”

To achieve an optimized level of compliance maturity, the unified visibility and reporting in Runecast brings security and stability to your IT environment, increases the uptime of your infrastructure and reduces overall costs.

About Runecast

Runecast Solutions Ltd. is a leading global provider of a patented solution for IT Security and Operations teams. Forward-focused enterprises like Avast, DocuSign, and the German Aerospace Center (DLR) rely on Runecast for proactive risk mitigation, security compliance, operational efficiency and mission-critical stability. Headquartered in London, U.K., Runecast is a Gartner Cool Vendor and has won Computing awards for Cloud Security Product of the Year and Best Place to Work in Digital. To add proactive to your IT strategy, visit www.runecast.com.

Contact Information

Runecast Solutions Ltd.
2164 R – Kemp House, 152 City Road
London EC1V 2NX, UK
Contact us here

Zuzana Belehradova
Community & Campaign Manager
[email protected]

Filed Under: KubeCon + CNC EU 2022, Latest News Releases Tagged With: KubeCon + CloudNativeCon EU 2022, Runecast

« Sosivio’s Predictive Troubleshooting for Kubernetes Gives Answers, Not Data
Why Over-Permissive CI/CD Pipelines are an Unnecessary Evil »

Techstrong TV – Live

Click full-screen to enable volume control
Watch latest episodes and shows

Upcoming Webinars

Cache Reserve: Eliminating the Creeping Costs of Egress Fees
Thursday, March 23, 2023 - 1:00 pm EDT
Noise Reduction And Auto-Remediation With AWS And PagerDuty AIOps
Thursday, March 23, 2023 - 3:00 pm EDT
Build Securely by Default With Harness And AWS
Tuesday, March 28, 2023 - 1:00 pm EDT

Sponsored Content

The Google Cloud DevOps Awards: Apply Now!

January 10, 2023 | Brenna Washington

Codenotary Extends Dynamic SBOM Reach to Serverless Computing Platforms

December 9, 2022 | Mike Vizard

Why a Low-Code Platform Should Have Pro-Code Capabilities

March 24, 2021 | Andrew Manby

AWS Well-Architected Framework Elevates Agility

December 17, 2020 | JT Giri

Practical Approaches to Long-Term Cloud-Native Security

December 5, 2019 | Chris Tozzi

Latest from DevOps.com

Postman Releases Tool for Building Apps Using APIs
March 22, 2023 | Mike Vizard
What DevOps Leadership Should Look Like
March 22, 2023 | Sanjay Gidwani
Things We Should Acknowledge, Part One: Hiring Sucks
March 22, 2023 | Don Macvittie
HPE to Acquire OpsRamp to Gain AIOps Platform
March 21, 2023 | Mike Vizard
Oracle Makes Java 20 Platform Generally Available
March 21, 2023 | Mike Vizard

TSTV Podcast

On-Demand Webinars

DevOps.com Webinar ReplaysDevOps.com Webinar Replays

GET THE TOP STORIES OF THE WEEK

Most Read on DevOps.com

Large Organizations Are Embracing AIOps
March 16, 2023 | Mike Vizard
What NetOps Teams Should Know Before Starting Automation Journeys
March 16, 2023 | Yousuf Khan
DevOps Adoption in Salesforce Environments is Advancing
March 16, 2023 | Mike Vizard
Grafana Labs Acquires Pyroscope to Add Code Profiling Capability
March 17, 2023 | Mike Vizard
How Open Source Can Benefit AI Development
March 16, 2023 | Bill Doerrfeld
  • Home
  • About DevOps.com
  • Meet our Authors
  • Write for DevOps.com
  • Media Kit
  • Sponsor Info
  • Copyright
  • TOS
  • Privacy Policy

Powered by Techstrong Group, Inc.

© 2023 ·Techstrong Group, Inc.All rights reserved.