Compliance, visibility, and vulnerability management for k8s. Great tool for SOC-2 compliance.
What do you like best about the product?
StackRox has simplified compliance for us. We get a view in one place of how well we’re meeting the controls from CIS Benchmarks, NIST, PCI, and HIPAA and SOC-2.
We really needed something for SOC-2 compliance, vulnerability management, IDS, k8s secrets issues, auditing access to customer environments, etc. StackRox … rocks for this.
Filling in vendor security assessments became much easier after we deployed StackRox.
What do you dislike about the product?
As a command line person, I would have preferred to have more functionality in the command line tool, but I still have to explore that a bit more.
What problems is the product solving and how is that benefiting you?
filling in security vendor assessments (we’re a security company) and automatically generating compliance reports from the dashboard for SOC-2 compliance.
This post was originally published on 3rd party site mentioned in the title of this site