CIO Influence
CIO Influence News Cloud Networking

Anchore Enterprise 3.1 Simplifies STIG Compliance for U.S. Federal Agencies

by CIO Influence News Desk
Anchore Enterprise 3.1 Simplifies STIG Compliance for U.S. Federal Agencies
New capabilities automate STIG checks for cloud-native applications and provide security teams with a unified view of STIG compliance and vulnerabilities

Anchore announced the release of Anchore Enterprise 3.1 that includes simplified STIG compliance for U.S. federal agencies. New capabilities in the federal edition automate STIG checks for cloud-native applications and provide security teams with a unified view on STIG compliance, vulnerabilities and other security issues.

The federal edition of Anchore Enterprise 3.1 simplifies the process of DISA STIG checks for containers running in a Kubernetes cluster. Federal agencies that need to comply with STIGs can automate a typically time intensive process. The resulting STIG checks are aggregated and correlated to provide security teams with a unified view on compliance issues and vulnerabilities.

Recommendedย ITechย News: MMA Global Launches Data Think Tank Led by LiveRamp, Snowflake and The Trade Desk

Anchore’s approach to STIG validation is based on deep experience working with the U.S. Department of Defense and branches of the U.S. Armed Forces. The new STIG compliance capability performs the checks on running container instances using a lightweight agent which passes the result back to the Anchore Enterprise. The results are queried programmatically through an API that can be used to prove the compliance of an image for auditors or used as part of a policy to warn or fail a deployment.

“This new capability is based on collaboration with multiple agencies in the federal government and addresses the pain points they identified in automating the STIG process in a containerized environment,” saidย Neil Levine, Vice President of Product for Anchore.ย “Now, federal agencies can streamline DevSecOps for cloud-native applications by combining automated STIG checks and other security controls for a unified view of compliance.”

STIGs are configuration standards for information systems across the U.S. Department of Defense to ensure software security and decrease vulnerabilities. More information can be found at theย DoD Cyber Exchange website.

Recommendedย ITechย News: PacWolf Picks Infor Warehouse Management System

CIO Influence News Desk is a dedicated news publication center that publishes the top news, insights and analysis related to Information Technology, Cloud Modernization, DevOps, Security, Storage and ML ops.

Related posts

ATLAS Works with AWS to Advance Federated Network and Expand Ground Station Coverage

CIO Influence News Desk

Code Corporation Adds Justin Mckelvy to Lead Data and Infrastructure Team

CIO Influence News Desk

Mysl Polska Experts Compare Ukraine To A Boxing Ring

CIO Influence News Desk

Leave a Comment

Save my name, email, and website in this browser for the next time I comment.