DevOps.com

  • Latest
    • Articles
    • Features
    • Most Read
    • News
    • News Releases
  • Topics
    • AI
    • Continuous Delivery
    • Continuous Testing
    • Cloud
    • Culture
    • DataOps
    • DevSecOps
    • Enterprise DevOps
    • Leadership Suite
    • DevOps Practice
    • ROELBOB
    • DevOps Toolbox
    • IT as Code
  • Videos/Podcasts
    • Techstrong.tv Podcast
    • Techstrong.tv - Twitch
    • DevOps Unbound
  • Webinars
    • Upcoming
    • Calendar View
    • On-Demand Webinars
  • Library
  • Events
    • Upcoming Events
    • Calendar View
    • On-Demand Events
  • Sponsored Content
  • Related Sites
    • Techstrong Group
    • Cloud Native Now
    • Security Boulevard
    • Techstrong Research
    • DevOps Chat
    • DevOps Dozen
    • DevOps TV
    • Techstrong TV
    • Techstrong.tv Podcast
    • Techstrong.tv - Twitch
  • Media Kit
  • About
  • Sponsor
  • AI
  • Cloud
  • CI/CD
  • Continuous Testing
  • DataOps
  • DevSecOps
  • DevOps Onramp
  • Platform Engineering
  • Sustainability
  • Low-Code/No-Code
  • IT as Code
  • More
    • Application Performance Management/Monitoring
    • Culture
    • Enterprise DevOps
    • ROELBOB
Hot Topics
  • There’s No Value in Observability Bloat. Let’s Focus on the Essentials
  • Observability Leaders: The Mighty Minority Holding Their Own Against Outages
  • Cisco Acquires Splunk to Create Observability Powerhouse
  • Nobl9 Unfurls Reliability Center for Managing SLOs
  • Harness Launches Open Source Gitness Platform

KubeCon + CNC EU 2022 KSPM and Compliance simplified with Runecast

KSPM and Compliance simplified with Runecast

By: Veronica Haggar on May 16, 2022 Leave a Comment

London, UK, MAY 16, 2022 – Runecast Solutions Ltd., a Gartner Cool Vendor and leading provider of simplified security and operational transparency for Kubernetes workloads, is pleased to announce that its patented enterprise platform Runecast (formerly Runecast Analyzer) will expand its current Kubernetes Security Posture Management (KSPM) capabilities with advanced image scanning and CI/CD integration. This will enable Runecast customers to jump-start Q3 2022 with proactive Kubernetes vulnerability management, from code to deployment.

Recent Posts By Veronica Haggar
  • DevOpsDays Ukraine: Disaster Recovery
  • Cybersixgill Significantly Streamlines Cyber Threat Reporting with Investigation Report Builder
  • Techstrong Adds Two Industry Luminaries
More from Veronica Haggar
Related Posts
  • KSPM and Compliance simplified with Runecast
  • Kasten by Veeam Announces NEW Kasten K10 V5.0 with Enhanced Kubernetes Security, Streamlined CI/CD Pipelines and Ecosystem Advancements
  • Sysdig Introduces Sysdig Advisor to Drastically Simplify Kubernetes Troubleshooting
    Related Categories
  • KubeCon + CNC EU 2022
  • Latest News Releases
    Related Topics
  • KubeCon + CloudNativeCon EU 2022
  • Runecast
Show more
Show less

Runecast is an IT Security and Operations platform designed to enable CISOs, CIOs, and their Security and Operations teams with proactive Kubernetes Security Posture Management (KSPM) and show them the most vulnerable areas to focus on first. 

“Kubernetes is no longer the new kid on the block, it’s a well  established container orchestration platform, running mission critical workloads and needs to be treated seriously when it comes to security and compliance,” said Runecast Head of Product Markus Strauss. “Runecast is here to simplify K8s security and speed up operations.”

AWS Builder Community Hub

According to the “State of Kubernetes 2022” report by VMware, 97% of organizations have concerns about K8s security.

Runecast a ‘High Performer’ (via G2 reviews)

In April 2022, Runecast announced its rank as a ‘High Performer’ in the Spring 2022 G2 Grid® Reports for the categories Security Risk Analysis, Cloud Workload Protection Platforms (CWPP), Vulnerability Scanner, Cloud Compliance and Cloud Security.

Running securely on-premises, Runecast automates security compliance checks for Kubernetes with insights into what is happening both on-premises and in the cloud. No sensitive company, employee, or customer data needs to leave the organization. Runecast aims to make vulnerability management easy with CVEs listed in the dashboard alongside vulnerabilities which are known to have been exploited, according to CISA’s KEV catalog.

Expanded Runecast Kubernetes coverage a ‘shift left’

Upon deploying Runecast (in a matter of minutes), IT teams see a list of critical issues and steps to remediate according to Kubernetes Best Practices. Hybrid environments can also see issues for AWS, Azure, VMware, Windows and Linux – all from the same dashboard.

New Kubernetes intelligence and capabilities coming to Runecast at the end of Q2 include:

Image Scanning

Our Kubernetes vulnerability management will extend from the cluster down to the nodes by providing vulnerability scanning for deployed Kubernetes container images. This will provide customers the ability to automate vulnerability management for Kubernetes, ensuring that Kubernetes deployments meet best practices, security and compliance requirements.

CI/CD Integration

The new version of Runecast will bring container-scanning capabilities for Dev and DevOps teams by integrating directly with their CI/CD pipeline, to ensure that ‘rapid develop and deploy’ approaches will be secure. CI/CD integration will allow customers to have limiting criteria at which point a pull request etc. will be automatically rejected. Runecast CI/CD integration will on-demand scan the Template or Manifest for the container to be deployed as part of the pull request and if a predetermined amount of Vulnerabilities are present on that requested container image, it will automatically deny the pull request and prevent this container from being deployed.

Extended (Agent-Based) Collection

The Runecast platform will allow teams much greater insight into the actual nodes running on the Kubernetes cluster and will greatly increase the amount of vulnerabilities that Runecast is able to proactively discover.

How Runecast works for K8s clusters

Runecast offers configuration drift management, security compliance auditing and proactive issues management for your Kubernetes deployments. It automates Kubernetes configuration analysis by auditing common cluster operational and security best practices for KSPM, including the CIS Benchmark (1.6.0) for Kubernetes security. IT teams can deploy Runecast directly to Kubernetes (using a Helm chart) and immediately get automated Kubernetes configuration analysis at the node-level, cluster-level, and workload level.

“By its very nature, Kubernetes is a highly flexible container orchestration system and is deployed across hybrid, multi-cloud, private cloud or on-prem environments. Runecast helps customers where their K8s workloads run, irrespective of their underlying infrastructure,” said Mr. Strauss “Using Runecast, our customers have the ability to scan their infrastructure against 10+ security standards straight out of the box.”

To achieve an optimized level of compliance maturity, the unified visibility and reporting in Runecast brings security and stability to your IT environment, increases the uptime of your infrastructure and reduces overall costs.

About Runecast

Runecast Solutions Ltd. is a leading global provider of a patented solution for IT Security and Operations teams. Forward-focused enterprises like Avast, DocuSign, and the German Aerospace Center (DLR) rely on Runecast for proactive risk mitigation, security compliance, operational efficiency and mission-critical stability. Headquartered in London, U.K., Runecast is a Gartner Cool Vendor and has won Computing awards for Cloud Security Product of the Year and Best Place to Work in Digital. To add proactive to your IT strategy, visit www.runecast.com.

Contact Information

Runecast Solutions Ltd.
2164 R – Kemp House, 152 City Road
London EC1V 2NX, UK
Contact us here

Zuzana Belehradova
Community & Campaign Manager
[email protected]

Filed Under: KubeCon + CNC EU 2022, Latest News Releases Tagged With: KubeCon + CloudNativeCon EU 2022, Runecast

« Sosivio’s Predictive Troubleshooting for Kubernetes Gives Answers, Not Data
Why Over-Permissive CI/CD Pipelines are an Unnecessary Evil »

Techstrong TV – Live

Click full-screen to enable volume control
Watch latest episodes and shows

Neo Quiz

Upcoming Webinars

Infosys Zero Cost Mainframe Transformations
Monday, September 25, 2023 - 11:00 am EDT
How PRINCE2 Improves Cybersecurity
Tuesday, September 26, 2023 - 11:00 am EDT
AWS and Sumo Logic: Observability With OpenTelemetry
Tuesday, September 26, 2023 - 1:00 pm EDT

GET THE TOP STORIES OF THE WEEK

Sponsored Content

JFrog’s swampUP 2023: Ready for Next 

September 1, 2023 | Natan Solomon

DevOps World: Time to Bring the Community Together Again

August 8, 2023 | Saskia Sawyerr

PlatformCon 2023: This Year’s Hottest Platform Engineering Event

May 30, 2023 | Karolina Junčytė

The Google Cloud DevOps Awards: Apply Now!

January 10, 2023 | Brenna Washington

Codenotary Extends Dynamic SBOM Reach to Serverless Computing Platforms

December 9, 2022 | Mike Vizard

Latest from DevOps.com

There’s No Value in Observability Bloat. Let’s Focus on the Essentials
September 22, 2023 | Tomer Levy
Observability Leaders: The Mighty Minority Holding Their Own Against Outages
September 22, 2023 | Jeff Stewart
Cisco Acquires Splunk to Create Observability Powerhouse
September 21, 2023 | Mike Vizard
Nobl9 Unfurls Reliability Center for Managing SLOs
September 21, 2023 | Mike Vizard
Harness Launches Open Source Gitness Platform
September 21, 2023 | Mike Vizard

TSTV Podcast

On-Demand Webinars

DevOps.com Webinar ReplaysDevOps.com Webinar Replays

Most Read on DevOps.com

Should You Measure Developer Productivity?
September 18, 2023 | Bill Doerrfeld
JFrog swampUP: Addressing the Advent of AI
September 18, 2023 | William Willis
Buildkite Acquires Packagecloud to Streamline DevOps Workflows
September 19, 2023 | Mike Vizard
What DevOps Teams Should Know About Phishing and the Supply Chain
September 19, 2023 | Gilad David Maayan
Splunk: Creating a Resilient and Dynamic Organization
September 18, 2023 | Mitch Ashley
  • Home
  • About DevOps.com
  • Meet our Authors
  • Write for DevOps.com
  • Media Kit
  • Sponsor Info
  • Copyright
  • TOS
  • Privacy Policy

Powered by Techstrong Group, Inc.

© 2023 ·Techstrong Group, Inc.All rights reserved.