Hi to you, 

In this newsletter, discover what we're up to plus all the latest news and resources from Nirmata!

Quick ask, there's been a lot of momentum around our CNCF project, Kyverno. If you would like to get updates on Kyverno, please give us a star on Github.

- Nirmata team 

Events

On-Demand: Kubernetes Policy Management via DevOps and Docker Live Show

Watch this on-demand stream with Bret Fisher from DevOps And Docker Live show and Jim Bugwadia about managing Kubernetes policy management using Kyverno. 

Watch the on-demand here

ISACA.Org: Securing Software Supply Chains with Kubernetes 

March 3, 2022, starts at 7:00 pm PT at Delta Hotels Santa Clara Silicon Valley

Nirmata will be at the next ISACA Silicon Valley Chapter to share best practices and use cases around securing software supply chains with Kubernetes. The talk will focus on how DevOps and Security Infosec can leverage Cloud-native technologies to minimize and mitigate supply chain risks. How they can utilize Policy management across the build, deploy, run lifecycle is key to their success.

Learn more

Blogs and More

Getting started with Kyverno on OpenShift Container Platform

In this post, Ritesh will discuss how you can get started with Kyverno on the OpenShift Container Platform and why Kyverno is the ideal solution to enable automation, governance, and security for any Kubernetes based platform including OpenShift Container Platform.

Read more

Enforce and Automate Policies for Kubernetes Data Protection with Kasten 

The reality is that the cloud-native organization is deploying applications to multiple clouds using CI/CD pipelines or infrastructure as code at a rapid pace – faster than IT can provision data protection policies. By the time the data protection team is done provisioning one policy, the developer team is already getting ready to deploy its next release. In this blog, learn how the team at Kasten authored Kubernetes-native policies that can be integrated into Infrastructure as Code to provide “guardrails” for these types of problems. These policies are enforced by essentially preventing misconfigured apps from going to production.

Read more

Runtime Security for Kubernetes

Many enterprises don’t invest enough resources in runtime security optimization or completely underrate its importance as a part of their Kubernetes security strategy. In this blog, we'll explain why it’s necessary to use native tools to adequately secure Kubernetes. The need for more modern security systems utilizing open-source software is clear to optimize runtime security performance.

Read more

Kubernetes Security: Pod Security Standards using Kyverno

The Pod Security Standards define three different policies to broadly cover the security spectrum. These policies are cumulative and range from highly permissive to highly restrictive. Unfortunately, there are currently two implementations in Kubernetes that implement this, one is being deprecated (Pod Security Policies) and the other one is still in beta (Pod Security Admission). In this blog, learn from one of our community members on how to implement Pod Security Standards with Kyverno, a policy engine for Kubernetes that can be used to describe policies and validate resource requests against those policies.

Read more

Kyverno Certification

We launched Kyverno Certification program during KubeCon North America. Since then we have had 500 people registered for the certification. Don't wait, take the certification and claim your badge!

Nirmata Enterprise Subscription for Kyverno.

With over 7 million Kyverno downloads deployed over hundreds of organizations, the open- source tool is becoming the de facto standard for policy configuration and management for cloud native enterprises. Meet Nirmata Enterprise Subscription for Kyverno! Which includes commercial support, and training for Kyverno.