The State of Kubernetes Security for 2024 report shows us that as the popularity of Kubernetes grows, the more important security planning and tooling becomes. Our annual report examines some of the most common cloud-native security challenges and business impacts that organizations face today, helping us to better understand their practices and priorities.
The report is based on a survey of 600 DevOps, engineering and security professionals around the world in organizations ranging from small companies to large enterprises. It delivers insights into the following:
- Specific security risks facing organizations and the steps they are taking to mitigate these risks.
- The types and frequencies of security incidents that organizations experience in Kubernetes environments.
- The distribution of Kubernetes security responsibilities across the organization.
- Guidance for reducing risks throughout application lifecycles.
Check out some of the highlights below and download the full report to learn more about the findings, as well as learn three tips for increasing the security of your cloud-native environments.
Security incidents can occur in all phases of the application lifecycle, and can be caused by a variety of issues. Despite the popularity of Kubernetes, many organizations are still cautious in their approach. Forty-two percent (42%) of respondents cite security as a top concern with container and Kubernetes strategies, noting the difficulties that can surface as security incidents, vulnerabilities, and misconfigurations at different stages of the application lifecycle.
Current container strategies present security-related concerns, with 42% of respondents suggesting that their company does not have sufficient capabilities in place to help address container security and related threats, particularly in light of the increased complexity that comes with modern computing environments.
![What is your biggest concern about your company's container strategy?](/rhdc/managed-files/styles/wysiwyg_full_width/private/Red%20Hat%20The%20State%20of%20Kubernetes%20Security%202024%20Image%201.png.webp?itok=E92swQqu)
Security issues continue to impact business outcomes, with 67% of respondents indicating that their companies delayed or slowed application development as a result of rising security concerns. The complexity of container-based Kubernetes environments is also a factor with which some organizations still struggle.
![Have you ever delayed or slowed down application deployment into production due to container or Kubernetes security concerns?](/rhdc/managed-files/styles/wysiwyg_full_width/private/Red%20Hat%20The%20State%20of%20Kubernetes%20Security%202024%20Image%202.png.png.webp?itok=DegOPRnE)
DevSecOps practices are common across organizations, with 42% of respondents reporting DevSecOps initiatives in an advanced stage in their organization. Meanwhile, 48% of respondents say their organization values DevSecOps and is in the early adoption stage, with teams collaborating on policies and workflows. This marks a notable improvement from last year, when only 39% of respondents reported being at this stage.
![Do you have a DevSecOps initiative in your organization?](/rhdc/managed-files/styles/wysiwyg_full_width/private/Red%20Hat%20The%20State%20of%20Kubernetes%20Security%202024%20Image%203.png.png.webp?itok=2T5JqoBG)
About the author
Red Hat is the world’s leading provider of enterprise open source software solutions, using a community-powered approach to deliver reliable and high-performing Linux, hybrid cloud, container, and Kubernetes technologies.
Red Hat helps customers integrate new and existing IT applications, develop cloud-native applications, standardize on our industry-leading operating system, and automate, secure, and manage complex environments. Award-winning support, training, and consulting services make Red Hat a trusted adviser to the Fortune 500. As a strategic partner to cloud providers, system integrators, application vendors, customers, and open source communities, Red Hat can help organizations prepare for the digital future.
More like this
Browse by channel
Automation
The latest on IT automation for tech, teams, and environments
Artificial intelligence
Updates on the platforms that free customers to run AI workloads anywhere
Open hybrid cloud
Explore how we build a more flexible future with hybrid cloud
Security
The latest on how we reduce risks across environments and technologies
Edge computing
Updates on the platforms that simplify operations at the edge
Infrastructure
The latest on the world’s leading enterprise Linux platform
Applications
Inside our solutions to the toughest application challenges
Original shows
Entertaining stories from the makers and leaders in enterprise tech
Products
- Red Hat Enterprise Linux
- Red Hat OpenShift
- Red Hat Ansible Automation Platform
- Cloud services
- See all products
Tools
- Training and certification
- My account
- Customer support
- Developer resources
- Find a partner
- Red Hat Ecosystem Catalog
- Red Hat value calculator
- Documentation
Try, buy, & sell
Communicate
About Red Hat
We’re the world’s leading provider of enterprise open source solutions—including Linux, cloud, container, and Kubernetes. We deliver hardened solutions that make it easier for enterprises to work across platforms and environments, from the core datacenter to the network edge.
Select a language
Red Hat legal and privacy links
- About Red Hat
- Jobs
- Events
- Locations
- Contact Red Hat
- Red Hat Blog
- Diversity, equity, and inclusion
- Cool Stuff Store
- Red Hat Summit