CASE STUDY
Mirantis helps organizations ship code faster on public and private clouds . The company provides a public cloud experience on any infrastructure from the data center to the Edge . repositories and decided to work toward proactively preventing this from happening to Mirantis .
Solution
Mirantis empowers a new breed of Kubernetes developers by removing infrastructure and operations complexity and providing one cohesive cloud experience for complete app and DevOps portability .
Challenges
Mirantis development teams are using GitHub extensively , with an infrastructure as code mindset . Like most developers today , they handle increasing amounts of credentials , and as Yury Koldobanov , Director of IT and acting CISO , Mirantis , puts it : “ The combination of people working on Git repos and the handling of credentials leads to issues ."
Since manually investigating hundreds of repositories is ineffective and costly Mirantis started looking for a solution .
Koldobanov ’ s team first considered a hybrid DLP / analyst tool , with keyword-based detection capabilities for GitHub but which also covered other data sources such as Google Drive , Dark Web , etc .
However , the key point for Koldobanov was that GitHub is a different kind of data source with different considerations . The need for a solution specialized in GitHub monitoring and capable of sophisticated secrets detection became obvious .
Koldobanov ’ s team found out that some companies were impacted by secrets leakage via Github
Another important consideration was automation and detection time . Given that malevolent actors are
62 INTELLIGENTCIO NORTH AMERICA www . intelligentcio . com