►
From YouTube: Stratus Medicine - Chris Mutzel Interview
Description
Stratus Medicine's Chris Mutzel talks about how they have integrated StackRox into the Stratus Platform to provide runtime security, intrusion behavior analysis, and static policy-based application gating.
A
My
name
is
chris
mutzel,
I'm
the
head
of
product
development
at
stratus,
medicine
stratus,
enables
healthcare
systems
to
securely
deploy
internal
and
external
software
applications
in
cloud
managed
services
in
multi-tenant
kubernetes
environments
as
head
of
product
development.
My
responsibility
is
to
architect
our
cloud
platform
in
a
way
that
increases
speed
of
deployment
for
these
institutions
but
reduces
risk.
Our
security
concerns
mirror
those
of
the
healthcare
systems
that
we
work
with,
because
they
are
required
to
be
not
only
compliant
with
these.
A
The
various
standards
out
there
like
hipaa,
but
they
also
are
really
concerned
that
any
kind
of
data
breach
would
really
ruin
their
reputation.
When
we
speak
with
these
health
systems,
we
need
to
be
able
to
assure
them
that,
by
storing
their
data
with
us
by
running
their
applications
with
us,
they
won't
incur
some
kind
of
liability
there.
We
run
all
of
our
workloads.
On
top
of
the
google
cloud
platform,
we
leverage
kubernetes
engine
to
run
all
of
our
containerized
applications.
A
One
of
the
things
that
was
really
important
to
me
when
we
looked
at
container
security
platforms,
was
a
focus
on
kubernetes
as
the
runtime
environment,
rather
than
as
containers.
In
general,
being
the
runtime
environment,
the
deep
integration
with
kubernetes
was
really
important
to
us.
The
things
that
stackdrops
is
doing
that
are
kubernetes
really
blend.
Well,
with
our
kubernetes
view
of
the
world.
We
like
the
namespace
specific
tenancy
model.
A
If
you
will,
we
deploy
all
our
applications
as
kubernetes
name
spaces,
and
we
like
that
stackrocks
was
able
to
aggregate
information,
for
example
at
it
as
at
a
namespace
level.
You
know
the
coolest
thing
that
I've
seen
so
far
when
we've
been
using
the
zaclox
product
was
in
our
demo.
We've
we've
integrated
stack
rocks
in
such
a
way
that
we
can
show
where
a
pod
is
shut
down
at
the
first
sign
of
a
breach.
A
So
we
will
run
this
demo
where
we
can
log
into
a
container
run
a
certain
command
in
the
linux
environment
and
show
the
container
is
terminated,
and
then
we
can
service
that
violation
in
both
the
stockrocks
dashboard
or
in
our
dashboard,
and
provide
that
sense
of
visibility
that
we
need
to
demonstrate
that
we've
got
full
control
over
the
environment.
We're
really
happy
with
stack
rocks.
I
think
we've
gotten
the
support
we
want
from
them.
As
an
organization,
the
product
has
provided
us
a
number
of
features
that
are
really
core
to
our
view
of
the
world.