U.S. Markets closed
  • S&P 500

    4,662.85
    +3.82 (+0.08%)
     
  • Dow 30

    35,911.81
    -201.79 (-0.56%)
     
  • Nasdaq

    14,893.75
    +86.95 (+0.59%)
     
  • Russell 2000

    2,162.46
    +3.02 (+0.14%)
     
  • Crude Oil

    84.14
    +0.32 (+0.38%)
     
  • Gold

    1,819.40
    +2.90 (+0.16%)
     
  • Silver

    23.04
    +0.12 (+0.53%)
     
  • EUR/USD

    1.1416
    0.0000 (-0.0000%)
     
  • 10-Yr Bond

    1.7720
    +0.0610 (+3.57%)
     
  • Vix

    19.19
    -1.12 (-5.51%)
     
  • GBP/USD

    1.3654
    -0.0025 (-0.1843%)
     
  • USD/JPY

    114.5720
    +0.3720 (+0.3257%)
     
  • BTC-USD

    42,196.88
    -1,096.28 (-2.53%)
     
  • CMC Crypto 200

    1,011.78
    -13.95 (-1.36%)
     
  • FTSE 100

    7,611.23
    +68.28 (+0.91%)
     
  • Nikkei 225

    28,333.52
    +209.24 (+0.74%)
     

SugarCRM Chooses Styra DAS and Open Policy Agent to Automate Authorization Policy for Fast-Growing Volume of Kubernetes Clusters

·3 min read

Styra DAS enables SugarCRM to improve operational efficiency, reliability and compliance preparedness while cutting costs and freeing resources to focus on business-critical projects

Styra, Inc., the founders of Open Policy Agent (OPA) and leaders in cloud-native authorization, today announced SugarCRM Inc., the innovator of time-aware CX, has deployed Styra Declarative Authorization Service (DAS) to dramatically cut infrastructure costs and free up DevOps and platform team resources and time, while improving security and reducing downtime. SugarCRM has moved from a manual review of workloads and YAML configurations to automated guardrails, enabling the team to spend more time on business-critical projects, accelerate time-to-market, improve reliability and ease compliance concerns.

Styra and SugarCRM case study

SugarCRM has users across more than 4,500 companies in 120+ countries leveraging its customer experience solutions that provide marketing automation, sales force automation, customer service, collaboration, mobile CRM, data enrichment and time-aware reporting. The software pipeline at SugarCRM is highly automated, and that automation is critical for fast release cycles, ensuring high-quality software, and maintaining standards for security and compliance.

Before Styra DAS, SugarCRM relied on manual operations, which were resource-intensive and prone to human error. SugarCRM needed infrastructure security and compliance controls that worked with modern software-defined systems and could be tracked over time. Not only were errors hard to prevent, but without a record of all the hands-on reviews to meet security regulations, it was extremely difficult to prove compliance without further manual effort walking through code with auditors.

"The manual process of reviewing Kubernetes workloads was siphoning valuable time and money. The platform team was constantly reviewing implementations and configurations and enforcing everything manually. These manual operations opened the door to misconfiguration due to human error," said Jorge Arroyo, Senior Vice President of Engineering and Cloud Operations, SugarCRM. "Styra and Open Policy Agent eliminated at least 40 hours per week that our team spent on manual reviews, remediation, and re-training developers, and allowed us to focus that saved time on new innovation instead."

SugarCRM was already using OPA but understood that in order to scale, they had to codify policy and automatically deploy best-practices as they added more and more policies and clusters. After weighing the cost and resources associated with building their own management software on top of OPA, SugarCRM decided to deploy Styra DAS Enterprise. Now the production team is able to build, test, distribute and monitor automated authorization policy for their Kubernetes clusters, to eliminate errors before they make it into production.

With Styra DAS, SugarCRM has simplified policy enforcement with a built-in library of best practices, allowing the platform team to spend less time researching which policies are important and how to write effective rules. Instead they can spend more time on differentiated work, improving platform availability and reliability, and speeding time to market. Adding to the operational efficiency, all policy decisions can be monitored in real time and tracked historically. That means SugarCRM can look back at every "allow and deny" decision to prove to the team and their peers in security and compliance that their policy-based controls are effective over time.

"Styra DAS not only makes things easier, but functions as a safety net. It also allows us to stop being reactive, because there are simply fewer mistakes to react to. Styra policy-as-code guardrails deployed early in the app development deployment cycle means that only the right workloads make it into production. The impact is felt on operations, security and the bottom line," concluded Arroyo.

Resources

Connect with Styra

LinkedIn
Styra Twitter
Styra blog
Open Policy Agent Twitter
Open Policy Agent blog

About Styra

Styra enables enterprises to define, enforce and monitor policy across their cloud-native environments. With a combination of open source (Open Policy Agent) and commercial solutions (Declarative Authorization Service), Styra provides security, operations and compliance guardrails to protect applications, as well as the infrastructure they run on. Styra policy-as-code solutions lets developers, DevOps and security teams mitigate risks, reduce human error and accelerate application development. Learn more at styra.com.

View source version on businesswire.com: https://www.businesswire.com/news/home/20210210005225/en/

Contacts

Jin Woo
280blue for Styra
jin@280blue.com
(510) 691-8862