Oracle Cloud Infrastructure Container Engine for Kubernetes (OKE) is a fully managed, scalable, and highly available Kubernetes service for deploying containerized applications in the cloud.
CIS does community-baked security best practices to develop world-class security solutions. The CIS Benchmarks are among its most popular tools that organizations can use. The CIS Benchmark for Kubernetes provides a consensus-driven security guideline to harden their Kubernetes deployments.
Audit teams can now evaluate the security of an OKE Kubernetes cluster. The best practices reduce complexity and enable these teams to manage risk and better audit OCI and OKE for critical, audited, and regulated information systems.
Open-source and commercial tools are available to automatically check against configurations and controls outlined in the CIS Benchmark for Kubernetes.
The CIS Benchmark covers recommendations for master components, etcd, control plane configurations, worker nodes, and policies such as for users, network, and pod security. It also provides many helpful configuration checks to ensure that best practices are applied to Kubernetes, including implementing network policies, role-based access control (RBAC) settings, admin privileges, and other protections for the Kubernetes API server.
Ready to learn more about the CIS Oracle Cloud Infrastructure Container Engine for Kubernetes (OKE) Benchmark? Explore the Benchmark now!
If you’re interested, check out the CIS Oracle Cloud Infrastructure Foundations Benchmark for more guidance.