You don't need Otterize for least-privilege, zero-trust or compliance.
Just block everything and you're done. Unfortunately, reality isn't so simple.
Access is required, but insecure access is a disaster waiting to happen.
â–®
Hate policies? So do we. Automate them and get a move on.
Otterize generates least-privilege ClientIntents based on your traffic, and submits a PR to GitHub. Or GitLab :-)
ClientIntents are an open-source Kubernetes CRD that describes the required permissions for a workload to function, similar to an iOS/Android app manifest. They are used to determine which policies, like network policies, AWS IAM policies, database users and SQL GRANTs, should be created for the workload.
Security and Compliance teams, we've got you too.
CIEM, DSPM capabilities, PCI compliance, or just good ol' least-privilege or zero-trust?
Otterize automatically validates and fixes issues for you, in Git, and creates reports for auditing. Developers love it, because it eliminates a lot of work and friction.
Blog & Content
Read things that Otis, our sweet mascot, wrote. Oh, and also the rest of the team. But they aren't otters so whatevs.
- Kubernetes
First Person Platform E03 - Jack Kleeman on PCI & Zero-trust with network policies at Monzo
The third episode of First Person Platform, a podcast: platform engineers nerd out with Ori Shoshan on access controls, Kubernetes, and platform engineering.
- IBAC
Mastering Kubernetes networking: A journey in cloud-native packet management
Master Kubernetes networking with a comprehensive packet walk, and learn how Otterize helps build adaptive Network Policies.
- Zero-trust
Moving beyond perimeter security: Lessons from the TunnelVision attack
The recent "TunnelVision" attacks reinforce the need for a new security paradigm. Let's explore how this type of attack can be mitigated in the future and what tools we need.