The feedback included in this spotlight was collected and verified in a survey of SUSE's customers conducted by UserEvidence, an independent research firm.
Challenges
Swimlane's internal risk management team identified limitations in its ability to manage, enforce and visualize the applied network policies. The company wanted to mature its Zero Trust program, but simply relying on a traditional “perimeter-based only” approach was not going to cut it. The company required a solution with strong feature-rich APIs that worked with Rancher and Amazon EKS. Overall, Swimlane needed to protect its edge computing environments and wanted a 100% open source solution.
Introducing Swimlane
Swimlane, the leader in AI-enhanced automation for the entire security organization, leveraged SUSE solutions to elevate its ability to manage the “network” and “workload” pillars of its Zero Trust Program. By using Swimlane Turbine to automate across SUSE solutions, the Swimlane SOC team advanced its threat detection, mitigation and defense-in-depth capabilities. As a result of this joint solution, Swimlane improved the efficiency, performance and scalability of its Kubernetes and containerized cloud workloads.
By leveraging NeuVector on Amazon EKS, Swimlane gained additional insights into the multi-vector security for its Kubernetes landscape with a managed control plane, highly available APIs and auto-scaling. These capabilities contributed to a more secure and resilient cloud ecosystem.
Swimlane implemented a layer 7 container firewall for cluster internal communications and integrated it with Turbine to automate vulnerability and compliance scanning. As a result, Swimlane streamlined the enforcement of granular admission policies and strengthened its container security program, while gaining greater observability and control of the runtime of its cloud native application stack.
“We wanted additional context and L7 policies to include DLP / WAF in our Kubernetes clusters as part of our ongoing journey and continuous improvement aligned with our Zero Trust journey."
Solving challenges with NeuVector on EKS
With the Swimlane Turbine cloud native security automation platform and NeuVector on AWS EKS, the Swimlane SOC team was able to automate the management of many multi-vector container security risks. This automated cloud security solution ensures that Swimlane continuously secures its network, container, host, and L7 container firewall to protect east-west and ingress/egress traffic.
In addition, Swimlane now has fully automated vulnerability and compliance scanning for configuration and container images in the build phase and registries. The Swimlane SOC team now has a solution for vulnerability management that provides container protection against unauthorized process and file activity.