Security Partner

The rapid pace of digital transformation has led to hastily glued-together DevSecOps systems and processes instead of a single, cohesive, and efficient system.

Red Hat works closely with our security ecosystem partners to weave together the technologies you need to build a comprehensive DevSecOps solution. A properly woven-together system will improve your application and container security, reduce risks, improve performance, and help you make the most of your Red Hat® investments.

Securing DevOps is a complex undertaking, especially as DevOps tools grow and change at a fast pace. Containers and Kubernetes add more complexity and open up new attack vectors and security risks. Development and operations teams must make security—including Kubernetes security—an integral part of the application lifecycle to safeguard critical IT infrastructure, protect confidential data, and keep pace with change.

Getting a Kubernetes environment ready to support business-critical applications in a secure, reliable, and scalable manner can be a challenge. Weaving DevSecOps into your environment can help in many areas.

• Improve security by removing more vulnerabilities in development, which will reduce potential issues in production.
• Improve efficiency and speed of DevOps release cycles by removing legacy security practices and tools and leveraging automation.
• Reduce risk and improve visibility by leveraging tools and processes to improve compliance and reduce the possibility of human error. This improves predictability and repeatability while reducing audit concerns.

Red Hat platforms create a secure foundation for DevSecOps, while our partners integrate and automate security tools and methods into the entire application lifecycle. Red Hat is uniquely positioned to bring you a comprehensive DevSecOps solution because of our open source mission, expertise in an open hybrid cloud, and extensive partner ecosystem. Red Hat OpenShift® and Red Hat Ansible® Automation Platform, together with partner technologies, secure your container application lifecycle, including development, deployment, and runtime.

Red Hat’s view is that securing a container lifecycle with DevSecOps methods requires change across three areas: culture, process, and technology.

• Culture means fostering a culture of collaboration between developers, operations, and security teams, along with helping all of them understand why and how security should be involved in the entire DevOps lifecycle.
• Process refers to applying workflow standardization, documentation, and automation in agreed-upon processes to improve efficiency and security throughout the lifecycle.
• Technology requires integrating the platforms, tools, and processes you're using for application development, deployment, and operations into a single cohesive system called DevSecOps.

Weaving these together to complement and support each other is critical. Security should be woven throughout, and made as transparent and automatic as possible.

Red Hat works closely with our strategic partners to certify integrations with Red Hat OpenShift and Red Hat Ansible Automation Platform. This gives us a holistic view of the DevSecOps lifecycle and helps us create a taxonomy of security capabilities so you can more easily consume DevSecOps solutions.

The Red Hat DevSecOps framework identifies nine security categories and 32 methods and technologies that address the entire application lifecycle. The framework places Red Hat built-in capabilities, DevOps toolchains, and security partner solutions at key integration points in the pipeline. You can implement some or all the methods and technologies within a category depending on the scope of your DevOps environment and your specific requirements.

Security use cases

Red Hat and our partners work together, giving you access to the expertise you need to weave security and automation throughout the entire application lifecycle. Together, we can help you craft a complete solution that makes security mostly automatic and nearly transparent to development and operations staff. Areas of expertise include:

Ford Motor Company seeks to provide mobility solutions at accessible prices to its customers, including dealerships and parts distributors. To speed delivery and simplify maintenance, Ford adopted a container-based cloud platform based on Red Hat OpenShift and supported by Sysdig technology to modernize its legacy, stateful applications. With its new platform, Ford achieved an increase in productivity for Containers-as-a-Service support.