StackRox Joins Forces with Stratus Medicine for Kubernetes Security and Compliance on Google Cloud Platform
April 11, 2019StackRox announced that Stratus Medicine has deployed the StackRox Kubernetes Security Platform to secure healthcare data and achieve Health Insurance Portability and Accountability Act (HIPAA) compliance. Stratus Medicine provides a platform-as-a-service for healthcare providers and technology suppliers to collaborate on innovative applications. Using the Stratus Platform running in Google Cloud Platform, these healthcare entities can test and validate new technologies while keeping patient and other sensitive data protected by Stratus. Stratus Medicine relies on StackRox to secure and protect critical customer and healthcare data running in its multi-tenant platform.
“Containers and Kubernetes enable us to deploy new
applications rapidly while maintaining isolation, decreasing the risk of data
breach,” said Chris Mutzel, principal architect for Stratus Medicine. “StackRox
enables us to protect patient data, ensure HIPAA compliance, and protect our
systems from vulnerabilities in the applications that our customers upload. The
StackRox platform continuously hardens our container and Kubernetes
environments, and it automatically detects and prevents threats. As we
evaluated vendors, we found that StackRox was the only solution that was both
container-centric and Kubernetes-centric, which provides both deeper context
for risk prioritization and Kubernetes-native policy enforcement.”
Stratus Medicine is using the StackRox Kubernetes Security
Platform across several use cases:
-
Visibility: StackRox finds and secures all deployments and pods across namespaces
and clusters, allowing Stratus to run at the speed and scale of
DevOps while protecting applications and development infrastructure.
-
Vulnerability Management: StackRox
streamlines vulnerability management for Stratus’ Kubernetes environments by
integrating with the CI/CD pipeline to prevent known vulnerabilities from ever
getting deployed.
- HIPAA Compliance: StackRox automates checks for HIPAA compliance, identifies gaps or non-compliance with controls, provides clear and detailed remediation information, and exports evidence of compliance ahead of audits.
-
Risk-based Prioritization: StackRox
provides a dynamic, multi-factor risk assessment that enables Stratus to
immediately prioritize and triage the highest-risk deployments in the
environment at all times.
-
Threat Detection: StackRox
leverages a combination of rules, whitelists, and behavioral modeling to
automatically detect threats and leverage built-in controls in Kubernetes for
response.
“Stratus Medicine is providing critical infrastructure that is much needed in improving health outcomes and reducing costs,” said Kamal Shah, CEO of StackRox. “StackRox helps Stratus Medicine to realize all the benefits of containers and Kubernetes and address their various security and compliance requirements. Furthermore, StackRox was seamless to deploy within their environment, enabling security to be automated and part of their DevOps workflow.”