Getting to grips with cloud-native application protection platform (CNAPP) security -- to protect everything, everywhere, all of the time

Getting to grips with cloud-native application protection platform (CNAPP) security -- to protect everything, everywhere, all of the time


As many CISOs are discovering, protecting cloud native environments requires a fundamental shift in thinking when it comes to keeping threats at bay. The huge change in the technology stack, the rapid delivery of software updates, and the unfettered use of open source, all present new challenges that old-style security tools cannot resolve.


Rather than using different point solutions that only solve specific security issues and need to be manually stitched together, Gartner recommends adopting a unified and end-to-end full lifecycle solution that starts in development and extends to deliver comprehensive runtime protection. In other words, a cloud-native application protection platform (CNAPP).


Problem is, not all CNAPPs are the 'real deal' which explains why many organizations will find themselves grappling with a growing stream of vulnerabilities emanating from their CI/CD pipelines on the one hand. Meanwhile, their SecOps teams are being deluged by alerts and configuration issues arising from their production environments.

To understand what truly constitutes a complete end-to-end cloud native security platform, let’s first take a look at the implications of cloud native from a wider enterprise security perspective.


Getting to grips with cloud native security -- the basics


Cloud native has generated a huge shift in the way today’s modern applications are built. One that has seen organizations embrace new agile methodologies and become increasingly reliant on open source code. They’re also utilizing microservices featuring multiple ports per app that are proving a top target for cybercriminals. But that’s not all.


They’re also using tools like Kubernetes to automate the deployment, scaling and management of a growing array of container-based applications. Problem is traditi ..

Support the originator by clicking the read the rest link below.