SPECIALIST INSIGHT place , therefore freeing up our engineers to solve business problems .
Time-saving became obvious during the Log4J and Spring4Shell vulnerabilities , as the first instance occurred before PPRO had deployed Aqua , and the second vulnerability was discovered shortly after the implementation of Aqua . When the first CVE was reported , the security team at PPRO took immediate action , writing scripts and running them against all known repositories . Creating and testing the script took hours , and then manually scanning all repositories was a daunting task .
Ferreira described the difference when Aqua was deployed : “ When Spring4Shell was reported , the team was notified automatically , and simply opened the dashboard and could immediately see all affected applications , essentially turning hours [ or ] days ’ worth of work into a matter of a few minutes . Even better , key information on the vulnerability was already there , saving us significant research time on remediation .”
While scanning images for vulnerabilities , the security team also discovered the ability to scan for secrets . Secret scanning involves scanning code repositories and other data sources for sensitive information , such as passwords and access keys . Secret scanning and being able to run a CIS ( Centre for Internet Security ) benchmark on all Kubernetes nodes is now part of normal operations hygiene . PPRO is also exploring the addition of Aqua ’ s Software Supply Chain Security . For PPRO , being secure is a given in the world of financial services but doing it well can yield a competitive advantage . PPRO customers appreciate that they can fully trust PPRO ’ s infrastructure , and engineers find satisfaction when security by design allows them to innovate at speed . � www . intelligentfin . tech
51