Veracode, a global leader in application risk management for the AI era, adopted Kubernetes to automate scaling, increase reliability, and optimize resource allocation. The Veracode platform helps organizations around the world build and maintain secure software to get accurate and actionable visibility into exploitable risks and achieve real-time vulnerability remediation through code scans and an AI-assisted remediation engine. Ensuring the reliability and security of the infrastructure they deploy on is vital to both the company and their customers. When Veracode adopted Kubernetes, they were aware of the complex challenges involved in maintaining compliance across multiple deployments and determined that it needed to be done right from the start.
Long trusted for expertise in application security and analysis, Veracode adopted Kubernetes approximately two years ago. As they migrated to Amazon EKS, they recognized the need to ensure compliance with reliability and security policies across their Kubernetes deployments. With a small team of DevOps engineers supporting larger teams of application engineers, manually enforcing consistency in Kubernetes configurations across multiple clusters would be nearly impossible.
Reliability and security are two of the most significant concerns for organizations transitioning to Kubernetes infrastructure. Aware of the complexity of ensuring compliance with Kubernetes best practices, the Veracode team also knew that operationalizing open-source solutions to manage compliance at scale across multiple teams and multiple clusters is an expensive and often manual process. As they proceeded with Kubernetes adoption, the team was concerned about:
Veracode proactively implemented Fairwinds Insights in September 2022, shortly after moving to Amazon Elastic Kubernetes Service (EKS) to ensure the reliability and security of their Kubernetes infrastructure. In most organizations, there’s a large ratio gap between DevOps engineers and application engineers, a gap that makes it difficult to manually enforce consistency in Kubernetes configurations. Without policy enforcement, it’s easy not to follow a best practice for reliability or make a configuration error. Small errors are simple to make but challenging to track down in complex Kubernetes environments.
By taking a proactive approach to policy enforcement, Veracode avoided many common problems organizations face with Kubernetes adoption. Instead of creating technical debt, enforcing Kubernetes policies early on enabled Veracode to easily align to best practices.
Benefits of Fairwinds Insights include:
Veracode's proactive adoption of Fairwinds Insights demonstrates the value of implementing robust reliability and security policies early in the Kubernetes adoption process. By leveraging Insights, Veracode ensured its ability to manage resource allocation and other reliability best practices efficiently as well as require compliance with security policies in its Kubernetes infrastructure.
“With Fairwinds Insights, we have more confidence that our platform is reliable and secure.”
- Veena Kannepalli, Senior DevOps Engineer at Veracode
While companies today benefit from accelerated development velocity, they also need to ensure that best practices are integrated into the development process. Fairwinds Insights gives Veracode visibility into its Kubernetes clusters so the DevOps team can proactively ensure reliability and minimize the potential for security vulnerabilities.
The DevOps team uses Fairwinds Insights to:
Veracode relies on Fairwinds Insights to automatically require new and existing clusters to comply with policies to increase reliability and avoid introducing security vulnerabilities.
“Shortly after moving to Amazon EKS, Veracode chose to ensure the security and reliability of its Kubernetes infrastructure by adopting Fairwinds Insights to enforce policies automatically.”
- Ken Jenney, Engineering Manager
