NeuVector Releases New Version of Cloud-Native Kubernetes Security Platform
August 24, 2020

NeuVector released the newest version of its cloud-native Kubernetes security platform.

The enterprise-trusted, build-to-production container security solution now includes extensive compliance reporting and enforcement for PCI DSS, GDPR, and other industry and government standards, as well as new workflows specifically designed to make it easy for DevOps teams to track critical vulnerabilities and to ensure – and prove – compliance.

For both enterprises and managed service providers, NeuVector also now includes granular role-based access controls (RBACs) to support multi-department and managed service provider (MSP) deployments.

Additionally, NeuVector has added serverless security for AWS Lambda and policy management integration with Open Policy Agent (OPA).

With a single click, DevOps teams can enable NeuVector's pre-configured compliance templates to identify any potential industry compliance issues and generate audit reports for PCI DSS, GDPR, and other stringent – and often changing – data security regulations. NeuVector's templates can be customized to perform specific compliance verifications whenever needed, and new templates can be created to check against internal or other industry compliance requirements. Enterprises can also generate compliance auditing reports to track progress on meeting requirements, and to review, update, and enforce controls required for industry compliance such as vulnerability management, network segmentation, and firewalling.

The enhanced NeuVector platform also introduces a straightforward vulnerability and compliance management workflow. Expanding on the vulnerability explorer launched earlier this year, DevOps teams can now track critical vulnerabilities and compliance violations, and quickly identify any that require immediate patching or follow-up alerts (as well as those which can be safely ignored). Compliance tests include the capability to scan and inspect images and containers for embedded secrets. Teams can manage vulnerability and compliance scan results in NeuVector, with no required integration to external workflow tools. NeuVector's new workflow also tracks dates, status, and other metadata to accelerate DevOps with organizing, prioritizing, and following up on image and run-time scan results.

The new release also includes:

- Even more granular RBACs: With Kubernetes deployments increasingly supporting multiple enterprise divisions, development teams, and roles, granular RBACs that allow access to NeuVector's security capabilities have become especially critical. To support enterprise PaaS deployments with multiple departments, NeuVector now enables admins to create customizable roles for those focused on CI/CD integration, DevOps, network security, operations, namespace users, and more.

- Massively scalable image scanning: As enterprise repositories face explosive growth in the volume of images that require continuous scanning, NeuVector is ensuring that scanning capabilities scale accordingly. NeuVector has now extended its platform's industry-leading image scanning performance, enabling massively-scalable image scanning that deploys parallel scanners to efficiently scan up to hundreds of thousands of images. NeuVector utilizes native Kubernetes controls to scale scanners up and down with appropriate resource allocation. By doing so, NeuVector enables DevOps to run frequent image rescanning when new vulnerabilities are discovered without risking failed registry scanning jobs.

- Scanning expands to AWS Lambda: NeuVector has expanded its vulnerability scanning and risk assessment capabilities to now protect serverless functions on AWS Lambda. Using the open source Serverless IDE, DevOps teams can trigger vulnerability scanning of AWS Lambda serverless functions, and remove vulnerabilities before running those functions. NeuVector includes support for functions in Java, Node.js, Python, and Ruby. NeuVector's risk assessments automatically analyze the AWS permissions granted for each function, and indicates their risk level. DevOps can review if permissions are appropriate, or if they increase the risks of vulnerability exploits. The NeuVector platform can also scan functions and containers for embedded secrets to detect policy violations.

- Open Policy Agent integration: NeuVector is announcing full integration with the Open Policy Agent (OPA) open source project, enabling OPA to manage and query security policy as code. This integration allows DevOps teams to easily review and query NeuVector CRD security policies within a Kubernetes cluster, or across their enterprises.

"Releasing compliance templates and vulnerability and compliance management workflow into our platform empowers DevOps and security teams to far more efficiently and assuredly align containerized environments with crucial regulatory requirements – while reinforcing security and reducing exposure to potential exploits," said Fei Huang, Chief Strategy Officer, NeuVector. "Similarly, our new granular RBAC security controls, hyperscale image scanning capabilities, AWS Lambda serverless function protections, and OPA integration each contribute to the ease and effectiveness with which enterprises can leverage NeuVector to safeguard containerized environments across the full application lifecycle and reliably achieve their security goals."

Share this

Industry News

December 06, 2021

Ascend.io announced support for Amazon Redshift Serverless powered on Amazon Web Services, Inc. (AWS), a fully managed petabyte-scale cloud data warehouse.

December 06, 2021

Neosec formed a strategic partnership with Kong Inc. to integrate its API security platform with Kong Gateway to provide a complete enterprise-class solution for managing and securing APIs and microservices.

December 02, 2021

Mirantis announced DevOpsCare, powered by Lens, a vendor-agnostic, fully-managed CI/CD (continuous integration/continuous deployment) product for any Kubernetes environment, offering developers higher levels of productivity more quickly.

December 02, 2021

The D2iQ Kubernetes Platform (DKP) is now available in AWS Marketplace, a digital catalog with thousands of software listings from independent software vendors that make it easy to find, test, buy, and deploy software that runs on Amazon Web Services, Inc. (AWS).

December 01, 2021

Bugcrowd announced the availability of Bugcrowd's cybersecurity solutions on the AWS Marketplace, providing customers with easy access, simplified billing, quick deployment, and streamlined license management.

December 01, 2021

Kublr received Microsoft Azure Arc-enabled Kubernetes validation, including for Azure Arc-enabled Kubernetes for Data Services.

December 01, 2021

CloudSphere achieved Amazon Web Services (AWS) Migration and Modernization Competency for discovering, planning, and helping enterprise customers move business services to AWS to reduce cost, increase agility and improve security.

November 30, 2021

JFrog introduced a new container registry and package manager for running JFrog Artifactory with Kubernetes clusters on-premises, in the cloud, or both.

November 30, 2021

Docker announced the availability of Docker Official Images directly from Amazon Web Services (AWS).

November 30, 2021

Weaveworks announced the general availability of Weave GitOps Enterprise, a GitOps platform that automates continuous application delivery and Kubernetes operations at any scale.

November 30, 2021

Amazon Web Services announced AWS Mainframe Modernization, a new service that makes it faster and easier for customers to migrate mainframe and legacy workloads to the cloud, and enjoy the superior agility, elasticity, and cost savings of AWS.

November 29, 2021

Quali announced the newest release of Torque Enterprise, which includes enhanced integration with Terraform, new custom tagging capabilities, and improved cost visibility dashboards, unleashing an entirely new level of self-service access to application environments on demand.

November 29, 2021

Vertical Relevance (VR), a financial services-focused consulting firm, achieved Amazon Web Services (AWS) DevOps Competency status.

November 18, 2021

Loft Labs announced the launch of Loft version 2 with a focus on ease of use that overcomes the major complaint that Kubernetes is complex and hard to set up.

November 18, 2021

Perforce Software announced new functionality to speed remediation of discovered defects in automated scans.