Overview

Build a DevSecOps culture

DevSecOps means infusing infrastructure security from end to end in the application lifecycle. Organizations moving to cloud or operating permanently in hybrid environments must enforce policy on a large scale with consistency across disparate resources.

Automating policy enforcement reduces the burden of maintaining a single source of truth for governance posture across hybrid environments, regardless of underlying infrastructure.

How it’s used

Define policy in one click

Governance and policy creation screen

Define policy in one click

Use one-click governance and policy creation capabilities from the governance and risk dashboard built into the IBM Cloud Pak® for Multicloud Management interface.

Review governance postures

Policy and security posture dashboard

Review governance postures

Review current policies and security postures by active container polices, violations, clusters and more. Create a new declarative policy with a single click.

Automate policy deployment

Policy deployment screen

Automate policy deployment

Enter the selected fields for policy deployment to automate the deployment of policies to the namespace and compute clusters of your choice.

Review and enforce

Governance and risk dashboard

Review and enforce

Once a policy has been created, the dashboard will show it as enforced. If there are any violations, the dashboard will update in real time, ensuring automated enforcement across app environments.