Nirmata Control Hub

Nirmata Control Hub (NCH) for Kubernetes provides enterprise-grade reporting and policy lifecycle management across Kubernetes clusters. It is built on Kyverno, a CNCF project created by Nirmata.

Kyverno is a Kubernetes native policy engine that allows you to define and manage policies as native Kubernetes resources, without requiring a new language or complex tooling. Kyverno policies can be used for pod security, workload configuration security, automating default configurations, image verification, and numerous other use cases. Every aspect of DevSecOps can be influenced through Policy as Code (PaC) solutions, from version and access controls to automated testing and deployment. Kyverno ensures workload security, enables self-service security, and eliminates configuration errors.

Kyverno allows you to use familiar tools such as kubectl, git, and kustomize to manage policies. Kyverno policies can validate, mutate, and generate Kubernetes resources. More information about Kyverno is available here.

Nirmata Control Hub Benefits

1. Operational Compliance - Curated policy sets for pod security, workload security, multitenancy and microsegmentation, supply chain security best practices, and much more. The Kubernetes ecosystem is fast-moving, and NCH provides peace of mind to DevSecOps teams for operational security and best practices.
2. Automated Kyverno and Policy Management across clusters and namespaces.
3. Policy Reports - Policy violation reports at pipeline, cluster, and cloud levels.
4. Sharing Reports - Ability to share compliance reports with your team.
5. Collaborative Workflows - Seamlessly integrate with policy exceptions and provide remediation suggestions.

Nirmata integrates with GitOps tools for policy management across clusters and provides centralized policy management in Enterprise Kubernetes environments.