By jason-mcalpin 2 min read
May 23, 2022

IBM Systems Lab Services is excited to help you make sure your containers are secure with the new OpenShift Security Assessment.

Businesses are changing the architectural choices they are making in developing their applications. Instead of using traditional models, such as monolithic development, they are moving to microservices. The heart of microservices is the container — companies such as Netflix and Google are well known for how they have utilized and promoted the use of containers for their services.

If a business has developed an application with containers, then providing that application at significant scale will require container orchestration. Container orchestration provides automation for much of the operational effort required to run containerized applications.  Kubernetes is the well-known open-source container-orchestration system, and Red Hat OpenShift is a commercialized software product derived from Kubernetes. It contains additional features not available from the Kubernetes open-source project.

The OpenShift Security Assessment offering

The IBM OpenShift Security Assessment, offered by IBM Systems Lab Services, is a service that involves checking the security of your OpenShift settings by verifying that they are properly configured.

Security is a priority for any company, which is where an OpenShift Security Assessment is important. Once your company has deployed OpenShift, Lab Services experts verify security settings according to recommendations made by the Center for Internet Security’s (CIS) Red Hat OpenShift Container Platform v4 Benchmark. CIS’s OpenShift benchmark is inspired by the CIS Kubernetes benchmark.

The Lab Services OpenShift Security service lets you know how the deployment of one of your OpenShift clusters compares to the CIS OpenShift benchmark. An IBM expert will document and review with you what OpenShift settings are not configured securely. Most importantly, we help you understand the recommendations that indicate the presence of an increased security risk so that you can take decisive action to mitigate the identified risks.

Saving your organization time and money

It’s true that your organization could access the CIS OpenShift benchmark and assess the security of OpenShift on your own. However, that typically would require 80-120 person hours to accomplish. The OpenShift Security Assessment service only requires 1-4 hours of your time, because much of the work of the assessment is done by IBM in the background.

The following are some of the other benefits you’ll enjoy:

  • This service is free for eligible IBM Power clients: Those who are eligible can request this service at no cost via the Power to Cloud program.
  • Our analysis and interactions are user-friendly: We create a special Microsoft Word document and Excel spreadsheet that makes it easy to understand the extent of the items we are analyzing.
  • Our results are delivered by a technical expert: If you have specific questions that are related to OpenShift security (but not directly answered by the CIS OpenShift benchmark when discussing the testing results), our experts can research answers and follow up on additional items. The technical expert will work with you to ensure that everything is clearly understood.

Learn more

To learn more about how we can help you secure your orchestration platform, contact IBM Systems Lab Services at ibmsls@ibm.com.

Get more details about the IBM OpenShift Security Assessment, offered by IBM Systems Lab Services.

Categories

Announcements  |  cyber-security
jason-mcalpin

More from Announcements
September 21, 2023

IBM TechXchange underscores the importance of AI skilling and partner innovation

3 min read - Generative AI and large language models are poised to impact how we all access and use information. But as organizations race to adopt these new technologies for business, it requires a global ecosystem of partners with industry expertise to identify the right enterprise use-cases for AI and the technical skills to implement the technology. During TechXchange, IBM's premier technical learning event in Las Vegas last week, IBM Partner Plus members including our Strategic Partners, resellers, software vendors, distributors and service…

August 29, 2023

Introducing Inspiring Voices, a podcast exploring the impactful journeys of great leaders

< 1 min read - Learning about other people's careers, life challenges, and successes is a true source of inspiration that can impact our own ambitions as well as life and business choices in great ways. Brought to you by the Executive Search and Integration team at IBM, the Inspiring Voices podcast will showcase great leaders, taking you inside their personal stories about life, career choices and how to make an impact. In this first episode, host David Jones, Executive Search Lead at IBM, brings…

August 18, 2023

IBM watsonx Assistant and NICE CXone combine capabilities for a new chapter in CCaaS

5 min read - In an age of instant everything, ensuring a positive customer experience has become a top priority for enterprises. When one third of customers (32%) say they will walk away from a brand they love after just one bad experience (source: PWC), organizations are now applying massive investments to this experience, particularly with their live agents and contact centers.  For many enterprises, that investment includes modernizing their call centers by moving to cloud-based Contact Center as a Service (CCaaS) platforms. CCaaS solutions…

August 2, 2023

See what’s new in SingleStoreDB with IBM 8.0

3 min read - Despite decades of progress in database systems, builders have compromised on at least one of the following: speed, reliability, or ease. They have two options: one, they could get a document database that is fast and easy, but can’t be relied on for mission-critical transactional applications. Or two, they could rely on a cloud data warehouse that is easy to set up, but only allows lagging analytics. Even then, each solution lacks something, forcing builders to deploy other databases for…