Enhancing Security And Access Controls Around Kubernetes For A Global Manufacturing Company

THE CHALLENGE: Optimizing Kubernetes Usage While Ensuring Security and Permission-Based Access for a Privately Held Organization

A global enterprise manufacturing company with more than 180 locations across North America, South America, and Europe was utilizing elastic Kubernetes within their AWS environment for automatic scaling based on demand, cost control, and to process data closer to the source. The client chose Kubernetes to reduce reliance on large, self-contained applications and to optimize resource usage.

As part of the critical project, the client required enhanced security procedures and access controls to protect sensitive data and resources across multiple locations, departments, and accounts. They sought a partner with network security expertise capable of coordinating with multiple stakeholders and project partners.

THE SOLUTION: Collaborating to Deliver Best Practice Security Protocols and Configuration in Kubernetes

The client engaged Judge Consulting to lead various security measures across the project, including security policies and access controls, centralized monitoring and logging, and documenting disaster recovery. Judge was the ideal partner due to their familiarity with the client’s organization and operating procedures, as well as their advanced experience with Kubernetes and security protocols.

Judge aligned with client project teams to develop new security policies, supporting the complex access controls needed across multiple teams to develop and deploy microservices with cross-account visibility requirements. To monitor the health and performance of the applications and infrastructure, Judge helped set up centralized monitoring and logging solutions using Dynatrace for analysis and CloudTrail for administrative logging. Throughout the project, Judge provided security redundancy and interim support for legacy applications.

THE RESULT: Enhanced Security and Controlled Access Optimizing Data Management in Kubernetes with Future Scalability

The Judge Consulting solution allowed the client to confidently and securely utilize their instance of elastic Kubernetes through AWS. This helped the client reduce developer staffing requirements by deploying applications in containers to improve scalability and portability. The new environment was configured to handle peak loads efficiently and to minimize latency issues, critical for an organization with plants and offices across the globe. Additionally, Judge set the client and their internal teams up for success by providing comprehensive disaster recovery documentation.