Release Date: 30 Apr 2026
Saner Cloud introduces the Container Orchestration Security Platform (COSP) to enhance visibility, control, and security within Containers and Orchestration environments. COSP unifies Containers and Orchestration security, compliance monitoring, anomaly detection, and access governance into a single, intelligent dashboard. Built to secure Kubernetes clusters as the foundation, Saner COSP simplifies asset discovery while ensuring robust security posture across control plane nodes, worker nodes, namespaces, images, and containers.
Key Highlights:
1. Unified Dashboard
The Saner COSP Unified Dashboard provides a single platform that consolidates data and insights from multiple sources into one cohesive view. It offers users a comprehensive overview of important data points following the completion of each scan.
This unified dashboard enhances the user experience by eliminating the need to switch between tools to access various data sources. Instead, all information is displayed in one location (at the organization level), enabling better decision-making, quicker responses, and increased efficiency. Users also have the option to click on relevant sections of the dashboard for additional details.
Key features of the unified dashboard include:
- Centralized Data: It aggregates data from various tools into a single interface
- Real-time Updates: After each scan, real-time information is displayed, providing users with up-to-date insights.
- Visualization Tools: Charts, graphs, tables, and other visual elements make the data easier to understand and interpret.
2. Visualise with Container Orchestration Asset Exposure (COAE)
Container Orchestration Asset Exposure (COAE) introduces enhanced visibility and control over on-premises Kubernetes environments by enabling comprehensive discovery of all cluster resources. It helps identify nodes, workloads, and publicly accessible components to highlight potential exposure risks. Resources are organized into security-focused categories for easier analysis, and critical assets can be grouped into Watchlists to ensure prioritized monitoring and faster response.
Create Custom Watchlists for Critical Resources
You can define Watchlists to monitor critical assets. Adding resources to the Watchlist enables proactive monitoring and ensures that any changes or risks associated with these critical resources are addressed promptly.
Identify Publicly Accessible Resources
You can quickly identify which resources actively utilize the public network interfaces and which ones do not, aiding in security and resource management decisions.
Switch between Standard and JSON views for Detailed Information on Resources
COAE now enhances resource analysis with the ability to switch between Standard and JSON views within the detailed resource panel, enabling deeper inspection of configurations, permissions, usage, and overall security posture. It also introduces improved visualization capabilities, including Resource Distribution, Resource Categorization, and Resource Trend insights, helping users make more informed and data-driven decisions.
3. Identify Configuration Gaps in Compliance Posture with COPM
Posture management now helps with evaluation of baseline cluster configurations to detect misconfigurations more effectively. Users can create custom benchmarks tailored to specific namespaces and selected security checks, allowing greater flexibility in assessments. The update also includes improved evidence collection and severity-based evaluation for better prioritization of risks. Compliance reporting is strengthened with out-of-the-box coverage for critical misconfigurations aligned with SecPod benchmark security checks, with planned support for additional frameworks such as CIS, NIST, PCI, and HIPAA.
Create Tailored Benchmarks
Enhancements to compliance and posture management now enable evaluation of baseline cluster configurations to detect misconfigurations more effectively. Users can create custom benchmarks tailored to specific namespaces and selected security checks, allowing greater flexibility in assessments. The update also includes improved evidence collection and severity-based evaluation for better prioritization of risks. Compliance reporting is strengthened with out-of-the-box coverage for critical misconfigurations aligned with SecPod benchmark security checks, with planned support for additional frameworks such as CIS, NIST, PCI, and HIPAA.
Assess System Compliance and Security Posture
Saner COPM offers a comprehensive overview of primary benchmarks, showing their severity distribution and compliance status. You can track the resources that have passed, failed, or remain unchecked due to disabled checks or unavailable data, providing a clear understanding of your compliance posture.
Identify and Resolve Configuration Issues with Quick Evaluation Benchmarks
Saner COPM offers fast and efficient evaluations of benchmarks, allowing organizations to quickly identify and resolve configuration issues during routine audits. This feature helps save time and ensures continuous compliance with security standards.
Detect Patterns Over a Period with Resource-Trends
Saner COPM offers a comprehensive overview of primary benchmarks, showing their severity distribution and compliance status. You can track if the resources have passed, failed, or remain unchecked due to disabled checks or unavailable data, providing a clear understanding of your compliance posture.
4. Detect and Investigate Security Anomalies with COPA
The Container Orchestration Posture Anomaly (COPA) capability introduces enhanced visibility and control over cluster and resource configuration anomalies. The “All Anomalies” view provides a comprehensive, color-coded visualization of both detected and remediated anomalies, where red highlights critical issues requiring immediate attention and green indicates resolved or non-problematic resources.
Remediate Anomalies with a Single-click
Users can efficiently remediate anomalies with a single click through Saner COSP – CORM, either at an individual resource level or across all identified security gaps, significantly reducing manual effort. Additionally, COPA now supports whitelisting of specific rules or resources, allowing exclusion of non-applicable anomalies from scans and patching recommendations, thereby enabling teams to focus on actionable security risks.
Whitelist Rules or Resources
When certain anomalies for rules or resources no longer applicable, Saner COSP – COPA provides you with the facility to whitelist or exclude these from the cloud security scans. Whitelisted anomalies are excluded from patching recommendations, allowing organizations to focus only on actionable security gaps.
5. Monitor and Fix Access Permissions with COEM
The Container Orchestration Entitlement Management (COEM) capability introduces enhanced visibility into access control and permissions across Kubernetes environments. It evaluates excessive permissions with supporting evidence, helping identify potential security risks. COEM also provides a simplified view of relationships between various RBAC resources, along with concise insights into critical activities performed across the cluster. Additionally, it enables the creation of custom report templates, allowing users to generate tailored reports for auditing and compliance needs.
Visually See the Relationship between Identity, Entitlement, or Permission
Saner COSP COEM offers a built-in Details Map that provides a visual representation of the relationships between an identity (users, groups, roles, cluster roles or service account) and its entitlements in containerization environment. It helps security teams understand how an identity can access resources and identify potential risks or misconfigurations.
Use Evidence to Address Entities with Excessive Permission
When reviewing permissions, use the Evidence for Excessive Permission that pinpoints unnecessary permissions in the infrastructure and helps you understand and address excessive permissions.
Troubleshoot or Analyze with Critical Activity Logs
Critical activity logs are essential for monitoring, auditing, and securing you container environments. These logs help organizations track actions, events, detect anomalies, and ensure compliance with security and governance policies.
Saner COSP-COEM captures key security-related actions and events that could indicate a potential threat, policy violation, or operational issue. Every column provides vital piece of context about the logged event, enabling enhanced visibility, quick analysis, incident response, and compliance.
6. Remediate Issues Identified with COPM, COPA and COEM
7. Monitor Progress and Workflow Status with CORM
Container Orchestration Remediation Management (CORM) introduces enhanced remediation capabilities with guided fixes, scheduled remediation jobs, and automated patching to streamline security operations. It provides Patch Aging and Patching Impact views to help define effective remediation plans, along with a focused view of patch details and status across tools. Additionally, Saner COSP enables quick access to remediation workflows by allowing users to seamlessly navigate to relevant tools, COPM, COEM, or COPA, directly from the dashboard, ensuring faster and more efficient patching.
Address Missing Patches Via Remediation Tasks
Addressing missing patches by creating remediation tasks is crucial for maintaining the security and stability of Container infrastructure. Saner COSP – CORM provides a wizard-based approach to creating a remediation task for the missing patches.
Prioritize Patches Across Tools that have the Highest Security Impact
Saner COSP – CORM helps you identify the Top 10 missing patches across COPM, COEM, and COPA that have the highest security impact. Patches are ranked based on a weighted score considering severity and the number of affected resources, ensuring the most critical issues are addressed first.
Develop a Clear Understanding to Evaluate the Remediation Efforts
The Patching Impact Chart in Saner CORM plots the number of security rules fixed against the number of patches applied, offering a clear understanding on the effectiveness of remediation efforts.
8. Generate Reports and Visualizations
The objective of Reports is to facilitate executive reporting and decision-making through data-driven insights. Saner COSP offers customizable dashboards and reports that track posture summaries, compliance, anomaly trends, entitlements and available patches.
9. Alerts
Saner COSP provides pre-built conditions for each alert that’s based on standard compliance specifications and overall security posture. Response configuration also helps you to perform patch remediation tasks as needed. Different types of alerts include:
- Asset Exposure Alerts
- Posture Anomaly Alerts
- Identity Entitlement Management Alerts
- Remediation Management Alerts
10. Audit Logs for tracking activities in COSP
Each tool within Saner COSP has its own set of unique job codes, ensuring that events occurring within a particular tool are distinctly categorized and easily traceable. This structured approach to capturing and categorizing events ensures detailed visibility into application usage, supporting effective auditing and troubleshooting.
