Stratus has developed a critical infrastructure layer that unleashes the promise of big data, machine learning and arti�cial intelligence in healthcare.

Headquarters:

Seattle, WA

Founded: 2016

Environment:

Docker, Kubernetes,

Google Cloud Platform

www.stratusmedicine.com

Stratus Medicine offers hospitals and other healthcare providers a

secure way to deploy innovative clinical, billing, and administrative

applications that improve patient care and reduce costs. Stratus

provides these services by deploying applications as containers in an

isolated environment where access to sensitive data is controlled but

where application developers can still leverage cloud-hosted

big-data, machine-learning, and arti�cial intelligence technologies. By

using this core infrastructure layer, healthcare providers are able to

work past major data security roadblocks and embrace new

technology faster.

Accelerating the Adoption of Tech in Healthcare

Innovation in healthcare lags behind other industries. Hospitals and

smaller care-provider environments would like to adopt modern

software applications that leverage cloud-computing and big data

technology, but the highly sensitive nature of medical record data

and strict compliance standards prevent the industry from moving

quickly. Stratus offers a platform-as-a-service product, the Stratus

Platform, that these healthcare providers can leverage to pilot and

deploy applications faster while still remaining secure and compliant.

The Stratus Platform deploys each application as a set of containers

without access to the outside world or the application developer. By

standardizing the application deployment work�ow within a single

system, the Stratus Platform becomes a single source of truth for IT

administrators who are tasked with guarding sensitive medical data.

The approach also allows the application owner, either an external

third party or an internal team, to focus on adding features that

improve the value of the application rather than focusing on hosting

or security.

Case Study

StratusMedicine

A Powerful Add-On to the Kubernetes Ecosystem

Stratus Medicine leverages Kubernetes to orchestrate its secure multi-tenant

compute environment. With an ever-evolving and robust set of security needs,

Stratus sought a mature security solution that could be integrated directly into its

environment. “We wanted a company that was built from the ground up with

containers and Kubernetes in mind,” says Chris Mutzel, principal architect at Stratus.

Mutzel and his team considered other container security platforms but found their

focus on images and containers to be too limiting. “The StackRox focus on

Kubernetes makes a big difference – it lets us deploy automatically and integrate the

StackRox functionality across our DevOps work�ows.” For instance, the team uses

the StackRox Admission Controller webhook to have Kubernetes prevent

deployments from launching if they don't meet minimum security standards.

Mutzel’s largest concern was that he and his team must run unknown code

submitted from application developers with a limited amount of manual discovery.

StackRox allows his group to guard against vulnerabilities being inserted into the

environment and to monitor workloads in real time for intrusion. With StackRox,

Stratus Medicine is able to immediately kill pods where intrusion behaviors are

detected, thereby protecting health system data.

Having StackRox directly integrate into the native Kubernetes control plane and

container infrastructure is critical to Mutzel. “Using one system for our security,

compliance and DevOps teams creates consistency and ensures we’re taking every

step possible to be both compliant and secure,” says Mutzel.

Leveraging StackRox Capabilities

• Visibility and Control

StackRox �nds and secures all containers running in an organization, allowing

Stratus to run at the speed and scale of DevOps while protecting the application

development infrastructure.

• Vulnerability Management

StackRox streamlines vulnerability management for Stratus’ Kubernetes

environments by integrating with the CI/CD pipeline to prevent known

vulnerabilities from ever getting deployed.

• Risk-based Prioritization

StackRox provides a dynamic, multi-factor risk assessment that enables Stratus to

immediately triage the highest-risk deployments in the environment at all times.

• Container Attack Runtime

Stratus leverages StackRox to automatically detect container attacks in seconds,

using rules, whitelists, and behavioral modeling for detection and response.

StackRox helps enterprises secure their containers and Kubernetes environments at scale. The

StackRox Kubernetes Security Platform is the industry’s �rst and only Kubernetes-native

container security platform. Its Kubernetes-native architecture enables security and DevOps

teams to enforce their security and compliance policies across the entire container life cycle, from

build to deploy to runtime. StackRox integrates with existing DevOps and security tools, enabling

teams to quickly operationalize container and Kubernetes security. StackRox customers span

cloud-native startups, Global 2000 enterprises, and government agencies.

Stratus Medicine offers hospitals and other healthcare providers a

secure way to deploy innovative clinical, billing, and administrative

applications that improve patient care and reduce costs. Stratus

provides these services by deploying applications as containers in an

isolated environment where access to sensitive data is controlled but

where application developers can still leverage cloud-hosted

big-data, machine-learning, and arti�cial intelligence technologies. By

using this core infrastructure layer, healthcare providers are able to

work past major data security roadblocks and embrace new

technology faster.

Accelerating the Adoption of Tech in Healthcare

Innovation in healthcare lags behind other industries. Hospitals and

smaller care-provider environments would like to adopt modern

software applications that leverage cloud-computing and big data

technology, but the highly sensitive nature of medical record data

and strict compliance standards prevent the industry from moving

quickly. Stratus offers a platform-as-a-service product, the Stratus

Platform, that these healthcare providers can leverage to pilot and

deploy applications faster while still remaining secure and compliant.

The Stratus Platform deploys each application as a set of containers

without access to the outside world or the application developer. By

standardizing the application deployment work�ow within a single

system, the Stratus Platform becomes a single source of truth for IT

administrators who are tasked with guarding sensitive medical data.

The approach also allows the application owner, either an external

third party or an internal team, to focus on adding features that

improve the value of the application rather than focusing on hosting

or security.

“StackRox gives us the

ability to actively

enforce security policies

and demonstrate our

adherence to these

controls as part of our

HIPAA compliance

process.”

– Chris Mutzel,Principal Architect

A Powerful Add-On to the Kubernetes Ecosystem

Stratus Medicine leverages Kubernetes to orchestrate its secure multi-tenant

compute environment. With an ever-evolving and robust set of security needs,

Stratus sought a mature security solution that could be integrated directly into its

environment. “We wanted a company that was built from the ground up with

containers and Kubernetes in mind,” says Chris Mutzel, principal architect at Stratus.

Mutzel and his team considered other container security platforms but found their

focus on images and containers to be too limiting. “The StackRox focus on

Kubernetes makes a big difference – it lets us deploy automatically and integrate the

StackRox functionality across our DevOps work�ows.” For instance, the team uses

the StackRox Admission Controller webhook to have Kubernetes prevent

deployments from launching if they don't meet minimum security standards.

Mutzel’s largest concern was that he and his team must run unknown code

submitted from application developers with a limited amount of manual discovery.

StackRox allows his group to guard against vulnerabilities being inserted into the

environment and to monitor workloads in real time for intrusion. With StackRox,

Stratus Medicine is able to immediately kill pods where intrusion behaviors are

detected, thereby protecting health system data.

Having StackRox directly integrate into the native Kubernetes control plane and

container infrastructure is critical to Mutzel. “Using one system for our security,

compliance and DevOps teams creates consistency and ensures we’re taking every

step possible to be both compliant and secure,” says Mutzel.

Leveraging StackRox Capabilities

• Visibility and Control

StackRox �nds and secures all containers running in an organization, allowing

Stratus to run at the speed and scale of DevOps while protecting the application

development infrastructure.

• Vulnerability Management

StackRox streamlines vulnerability management for Stratus’ Kubernetes

environments by integrating with the CI/CD pipeline to prevent known

vulnerabilities from ever getting deployed.

• Risk-based Prioritization

StackRox provides a dynamic, multi-factor risk assessment that enables Stratus to

immediately triage the highest-risk deployments in the environment at all times.

• Container Attack Runtime

Stratus leverages StackRox to automatically detect container attacks in seconds,

using rules, whitelists, and behavioral modeling for detection and response.

©2019 StackRox, Inc. All rights reserved.

LET’S GET STARTED

Request a demo today!

info@stackrox.com

+1 (650) 489-6769

www.stackrox.com