Home Applications Automating Compliance for Highly Regulated Industries with Docker Enterprise Edition and OSCAL

Automating Compliance for Highly Regulated Industries with Docker Enterprise Edition and OSCAL

0
Automating Compliance for Highly Regulated Industries with Docker Enterprise Edition and OSCAL
0

Highly-regulated industries like financial services, insurance and government have their own set of complex and challenging regulatory IT requirements that must be constantly maintained. For this reason, the introduction of new technology can sometimes be difficult.

Docker Enterprise Edition provides these types of organization with both a secure platform on which containers are the foundation for building compliant applications and a workflow for operational governance at scale.

The problem remains that even with the technology innovation of containers, cloud and other new tools, the area of IT compliance has remained relatively unchanged with security standards that lag far behind, creating mismatches of traditional controls to modern systems. Organizations are still dependent on the same mundane, paperwork-heavy audit and reporting processes of previous decades.

The time and cost to build a PCI, FISMA or HIPAA compliant system is no small feat, even for large enterprises, due to the resources required to develop and maintain the documentation and artifacts that must be continuously audited by a third party.

To address these requirements, Docker has collaborated with the National Institute of Standards and Technology (NIST), and today, we are excited to announce that Docker is fully embracing the Open Security Controls Assessment Language (OSCAL) standard and committing to its future development. OSCAL is a machine-readable, “standard of standards” that normalizes how system security controls and corresponding assessment information are represented.

Its goal is to improve the efficiency, accuracy and consistency of system security assessments and enable a large decrease in assessment-related labor. OSCAL gives users the ability to assess a system’s security state continuously and against several sets of requirements simultaneously. The OSCAL specification is designed with security and agility in mind. It is both XML- and JSON-based, is technology and infrastructure-agnostic and is incredibly flexible in its use.

Read the entire article here, Automating Compliance for Highly Regulated Industries with Docker Enterprise Edition and OSCAL

Via the fine folks at Docker.

Categories:
Docker Docker is an open-source project to easily create lightweight, portable, self-sufficient containers from any application. The same container that a developer builds and tests on a laptop can run at scale, in production, on VMs, bare metal, OpenStack clusters, public clouds and more.

Share your view, leave a comment below:

Featured Resources:

Related Articles:

| LATEST FEATURED RESOURCES

White Papers

    Application Lifecycle Management with Stratusphere UX – White Paper

    Enterprises today are faced with many challenges, and among those at the top of the list is the struggle surrounding the design, deployment, management and operations that support desktop applications. The demand for applications is increasing at an exponential rate, and organizations are being forced to consider platforms beyond physical, virtual and cloud-based environments. Users […]

    Downloads

      Download Commvault VM Backup and Recovery: end-to-end VM backup, recovery and cloud management

      Commvault’s ability to provide end-to-end VM backup, recovery and cloud management creates a significantly better way to build, protect and optimize VMs throughout their lifecycle. Our best-in-class software for VM backup, recovery and cloud management delivers a number of significant benefits, including: VM recovery with live recovery options; backup to and in the cloud; custom-fit […]

      On-Demand Webinars

        What’s Going on in EUC Printing – A Technical Deep Dive!

        The IGEL Community and ThinPrint invite you to watch the following technical deep dive webinar. The agenda is to technically bring you up to speed on what’s going on in the EUC Printing space today along with a deep dive into new methods, technologies, printing scenarios and a discussion on why printing still matters. You […]

        Latest Videos

          Amazon WorkSpaces – Automatically configured session screen saver Video

          To meet the corporate security requirements and to improve user experience, a secure screen saver within Amazon WorkSpaces is required only if the endpoint doesn’t have a secure screen saver. This video is from the fine folks at deviceTRUST.

          Views All IT News on DABCC.com
          Views All IT Videos on DABCC.com
          Win big $$, visit ITBaller.com for more info!

          Visit Our Sponsors

          Close