Case Studies
Kubernetes Penetration Testing and Purple Teaming at Large UK Clearing Bank
How the Bank boosts security measures: Penetration Testing identifies misconfigurations and gaps in Security Monitoring
Security Architecture Support to a Government Client
How a Government client developed a secure by design Kubernetes platform to support payments and identity applications
Lloyds Banking Group: Container Security Maturity Model
How a financial institution assessed and improved their container security posture
Admiral: Kubernetes Defensive and Offensive Security Training
How Admiral empowered their security teams through in-person threat modelling and penetration testing training
O'Reilly: Kubernetes Security and Threat Modelling Courseware
How a leading educational and online learning provider enhanced their cloud native training portfolio through cutting-edge Kubernetes security live events
The Linux Foundation: Advancing Security Education with Hands-On Zero Trust Courseware
How the world's leading open source organisation demystified cloud native security paradigms through practical Zero Trust training
The Linux Foundation: Authoring the Kubernetes and Cloud Native Security Associate (KCSA) Exam
How the world's leading open source organisation developed a new certification for the next generation of Cloud Native security professionals
The Linux Foundation: Security Hardening Declarative GitOps CD on Kubernetes
How the world's leading open source organisation promoted secure Argo CD deployments through end-user focused threat modeling
Citigroup: Continuous Secure Ingestion for OSS Software Packages
How a multinational bank implemented automated provenance verification of over three million external packages
Citigroup: Security Architecture and Engineering for EKS
How a multinational bank leveraged the benefits of managed Kubernetes with cloud native secure-by-design principles
BP: Universal Cryptographically-Verifiable Workload Identities
How a multinational energy company accelerated the adoption of cloud-agnostic workload identity mechanisms, through options analysis and security architecture
Protocol Labs: Web3 Assurance
How a web3 leader ensured the security and robustness of its decentralized storage and compute system using open source cloud native security solutions
Questrade, Inc: GKE Infrastructure Threat Modelling
How an online brokerage enhanced the security of their GKE infrastructure to support their successful banking licence application
JP Morgan Chase: Independent Security Assurance Using EKS
How a leading Financial Services Organisation securely unlocked Kubernetes in AWS using EKS
Marshall Wace: Active Directory and Kubernetes Workload Integration
How a hedge fund seamlessly migrated on-premises Active Directory (AD) infrastructure into their new cloud native Kubernetes platform
Google Cloud: Center for Internet Security Benchmarks for Google Kubernetes Engine
How a leading public cloud provider lowered the barrier for securing managed Kubernetes clusters by publishing best practice benchmarks
Nuaware: Nurturing Expertise with Secure Container and Kubernetes Training
How a software vendor reduced sales cycle time with client training
UK Government: Critical National Infrastructure Migration
How a UK Government department maintained availability and optimised deployment safety by securely adopting Public Cloud