To spot malware and vulnerabilities most effectively, Trend Micro built Deep Security Smart Check to scan container images before deployment. The result is that security issues often can be resolved in the development cycle as opposed to after the release of the application.
“A key to increasing security for applications starts with building security into the continuous integration and development (CI/CD) pipeline,” said Jason Cradit, senior director of technology for TRC Companies, Inc. “Trend Micro has met the requirements of development with tools that fit their environment and do not slow them down.”
Additionally, Trend Micro is launching an extensive new suite of APIs and an automation center with resources to help enable security automation through better integrations. Trend Micro Deep Security customers use product APIs to enable continuous delivery, status monitoring, IT service management and orchestration tools integration, such as the newly launched Amazon Elastic Container Service for Kubernetes.
“Container platforms are enabling organizations to achieve faster software development release cycles, and they do not accept slowing down for additional security measures,” said Bill McGee, SVP and GM of Hybrid Cloud Security at Trend Micro. “All workload environments require security – container environments are no different. Their sheer volume and temporary nature can create security gaps for attackers to exploit. We can also expect that attackers who attack live server application environments will move their focus to the software build cycle, trying to deploy malware from within the build environment.”