Unleashing the power of secure AI: Domino x Chainguard
The challenge: Translating the complexities of vulnerability management to business impact
Domino faced a unique challenge in managing vulnerabilities across their platform. Customers entrust them with their most sensitive data, and maintaining a secure environment was critical. The engineering team was faced with spending valuable time and resources triaging and assessing the actual risk of common vulnerabilities and exposures (CVEs) and the hurdles associated with integrating cutting-edge, open-source software so customers can quickly weave the latest tools and techniques into AI work on Domino.
Additionally, Domino's customers in highly regulated industries have stringent security and compliance requirements. A proactive approach to VM is required to mitigate risks, manage vulnerabilities, and quickly tap the value of ML applications, securely.
While securing sensitive customer data and meeting stringent compliance requirements were critical for Domino, the collaboration with Chainguard delivered far more than just risk mitigation. By leveraging Chainguard's secure versions of common software tools and base images for containerized workloads, Domino streamlined their vulnerability management process, freeing up valuable engineering time and resources.
This newfound efficiency allows Domino to redirect resources towards driving risk mitigation, innovation and growth.
"The real impact we've seen with the efficiency we've gained from smaller CVEs, less potential vulnerabilities is a real ability to start doing real risk analysis for our customers," said John Brunn, CIO at Domino Data Lab.
“If I were to describe Chainguard's value in one word, I would say: efficiency.”
-John Brunn, CIO at Domino Data Lab
Unlocking new markets and accelerating innovation
Domino's hardened security posture with Chainguard has opened doors to new business in highly regulated industries driven by security-conscious buyers. Moreover, the streamlined development process Chainguard Images enables for Domino developers helps rapidly accelerate product development and critical features, ensuring the safe operation of AI for mission-critical workloads and highly-regulated customers.
Translating the value into hard numbers, Domino estimates that Chainguard has helped them better utilize its engineering team members’ talents by reducing the effort required for vulnerability management. This equates to roughly three weeks of effort building a platform for image hardening, and eliminates four hours of CVE remediation work per month per engineer.
"Having a very reliable, secure, and scalable platform allows customers to focus on AI innovations instead of focusing on vulnerabilities,"
-John Brunn, CIO at Domino Data Lab
A secure foundation for AI-driven innovation
Domino's partnership with Chainguard is not just a tactical security solution; it's a strategic enabler of their vision for the future. By ensuring a secure and reliable platform for Enterprise AI, Domino empowers the world’s largest companies across highly regulated industries to unleash AI and to solve the world’s most important problems.
As Domino continues to grow, their collaboration with Chainguard is a cornerstone of their commitment to providing a secure and efficient platform that reduces the cost and time-to-impact of AI innovation at scale.
What was very interesting for us about Chainguard was it was founded and built by people who have lived and gone through the pain as we had. One thing that resonated really well with us about that product was how they were focusing on solving the problem at the right place.
Vulnerability management is a huge source of toil in security engineering. As a one-person team, I can’t look at thousands of vulnerabilities and do everything else in my job. I’m lucky that I use our own products like Chainguard Images. Because we have so few CVEs in our production fleet, the vulnerability management part of my role takes so little time.
For years, our team struggled with minimizing and triaging CVEs in one of our most critical customer-facing images. By switching to Chainguard Images, we almost immediately achieved zero-known CVEs in our customer image for the first time in two years, which significantly helped free up engineering and technical success resources to focus on customer innovation and removed the daily headache of vulnerability maintenance associated with that image.
Security is in the DNA of GitGuardian. And Chainguard really made sense when we started to look at how to streamline and make sure we don't ship our software with any vulnerabilities because that is a really big part of our story.
Ready to Lock Down Your Supply Chain?
Talk to our customer obsessed, community-driven team.