X

The latest cloud infrastructure announcements, technical solutions, and enterprise cloud insights.

Announcing the CIS Oracle Cloud Infrastructure Container Engine for Kubernetes Benchmark

Adao Oliveira Junior
Senior Principal Product Manager

We’re happy to announce the Center for Internet Security (CIS) has published the Oracle Cloud Infrastructure Container Engine for Kubernetes (OKE) Benchmark.

Oracle Cloud Infrastructure Container Engine for Kubernetes (OKE) is a fully managed, scalable, and highly available Kubernetes service for deploying containerized applications in the cloud.

Who are CIS, and what do they do?

CIS does community-baked security best practices to develop world-class security solutions. The CIS Benchmarks are among its most popular tools that organizations can use. The CIS Benchmark for Kubernetes provides a consensus-driven security guideline to harden their Kubernetes deployments.

Audit teams can now evaluate the security of an OKE Kubernetes cluster. The best practices reduce complexity and enable these teams to manage risk and better audit OCI and OKE for critical, audited, and regulated information systems.

Open-source and commercial tools are available to automatically check against configurations and controls outlined in the CIS Benchmark for Kubernetes.

The CIS Benchmark covers recommendations for master components, etcd, control plane configurations, worker nodes, and policies such as for users, network, and pod security. It also provides many helpful configuration checks to ensure that best practices are applied to Kubernetes, including implementing network policies, role-based access control (RBAC) settings, admin privileges, and other protections for the Kubernetes API server.

Want to know more?

Ready to learn more about the CIS Oracle Cloud Infrastructure Container Engine for Kubernetes (OKE) Benchmark? Explore the Benchmark now!

If you’re interested, check out the CIS Oracle Cloud Infrastructure Foundations Benchmark for more guidance.

Be the first to comment

Comments ( 0 )
Please enter your name.Please provide a valid email address.Please enter a comment.CAPTCHA challenge response provided was incorrect. Please try again.Captcha