Modern Compliance With Sysdig Secure DevOps Platform

Josh Ziman, CTO of Global Commerce & Information, discusses the implementation of compliance requirements in federal environments using modern security architectures, focusing on Sysdig Secure DevOps Platform to address NIST SP 800-53 and FedRAMP controls. Sysdig Secure enhances container and OpenShift-based infrastructures by allowing for the development and application of micro-policies that align with specific business and container needs, thereby streamlining the compliance process. The platform's capabilities, such as runtime profiling and container baselining, enable organizations to maintain compliance and enforce policies throughout the container lifecycle, offering both rigidity and flexibility in security measures. By integrating Sysdig's tools with Global CI's policy lifecycle approach, organizations can efficiently achieve ongoing authorization and rapid Authorization to Operate (ATO), while balancing high-level policy objectives with technical implementation and business impact.