Kubernetes is a complex and abstract set of APIs to orchestrate containerized applications at scale, one that poses new challenges for security teams. Yet the cloud-native ecosystem has provided a space for collaboration among open source project maintainers, vendors, and users, who, together, are transforming Kubernetes’ open-by-default architecture into a flexible way to build modern security for containerized applications with a Zero Trust approach. Use this report to understand the breadth of Kubernetes’ mandatory security requirements and discover best practices to protect their Kubernetes environments.