CIO Influence
CIO Influence News Cloud Security

Anchore Delivers New Automated Policies that Accelerate FedRAMP Compliance for Containerized Applications

by CIO Influence News Desk
Anchore Delivers New Automated Policies that Accelerate FedRAMP Compliance for Containerized Applications
Offering will help organizations meet new FedRAMP vulnerability scanning requirements for containers

Anchore, the leader in continuous security and compliance for containers, announced the release of a new FedRAMP policy pack. This proprietary policy scanning pack will help software vendors and cloud service providers identify and resolve compliance issues for containerized applications and shorten the timeline to achieve a FedRAMP authority to operate (ATO) certification.

The new policy pack provides pre-built checks for FedRAMP controls that apply to containers. It will help organizations meet the supplemental requirements within the 6-month deadline specified in theย Vulnerability Scanning Requirements for Containersย document released by FedRAMP inย March 2021.

Recommendedย ITechย News: New Report Highlights the Unsettling State of IoT Device Security

Use of Anchore and the FedRAMP policy pack will:
  • Scan and assess images to identify which FedRAMP controls are failing and provide the specific changes needed to remediate the issue;
  • Harden container images to meet FedRAMP scanning requirements;
  • Embed the needed security and compliance checks into the container build, test, and orchestration pipeline;
  • Monitor containers in the registry and running in production and ensure they have been scanned within the required 30-day scanning window;
  • Generate a container workload artifact report for use with federal assessors and third-party assessor organizations (3PAO).

“It is critical that enterprises remediate issues and identify vulnerabilities within containers and open source components, especially with the rise of software supply chain attacks,” saidย Daniel Nurmi, CTO and Co-Founder of Anchore.ย “By applying FedRAMP policies and mapping back to specific checks within the NIST 800 compliance control set, we’re helping companies expedite the time to reach FedRAMP authorization and reduce their costs to maintain compliance.”

Recommendedย ITechย News: MPLS Usage Drops by 24% in Two Years as SD-WAN Adoption in Enterprise WAN Ramps Up

CIO Influence News Desk is a dedicated news publication center that publishes the top news, insights and analysis related to Information Technology, Cloud Modernization, DevOps, Security, Storage and ML ops.

Related posts

New Survey Finds Cloud Waste is On the Rise – Driven by Preventable Mistakes, Inefficiencies, and New AI Initiatives

Business Wire

C&S Wholesale Grocers, Inc. Upgrades to Next-Generation RingCentral MVP with RingCentral Video

CIO Influence News Desk

Soltes Security Opts for Cloudastructureโ€™s Remote Guarding

PR Newswire