Beyond the Firewall: Why SAS Viya & Kubernetes Are Your Security Power Couple

The “Castle and Moat” era is over. Here is how modern analytics defends itself.

1. The Orchestrator of Modern Analytics

“Kubernetes” (K8s) is often thrown around as IT jargon, but for the modern enterprise, it is the engine room of agility. Think of Kubernetes as an invisible, automated operations team. Rather than managing software on individual physical servers, Kubernetes coordinates your applications across a fleet of machines, ensuring everything runs in harmony.

While the terminology—pods, nodes, clusters—can be daunting, the business value is undeniable. As a trusted SAS Gold Partner, Selerity leverages Kubernetes to deliver:

• Automation: K8S adjusts resources dynamically. Traffic spike? It scales up. Quiet period? It scales down to save costs.
• Resilience: In the data world, downtime is the enemy. Kubernetes provides “self-healing” capabilities. If a component fails, K8S detects the issue and restarts it instantly—often before your users even blink.
• Portability: No vendor lock-in. Whether you are on AWS, Azure, or a hybrid setup, your containerised applications move seamlessly.
• Security: This is the big one. We’re talking baked-in protection, from Role-Based Access Control (RBAC) to strict network policies that lock down exactly who (and what) can talk to your system.

2. The Container Advantage: Isolation is Key

Kubernetes relies on containers—standalone packages that hold specific functions of an application. This is a massive shift away from the old “monolithic” servers, where a single bad update could destabilise the entire system.

From a security perspective, this isolation is a game-changer. In a containerised SAS Viya environment, functionality is implemented as microservices. If one container is compromised, it doesn’t bring down the whole ship. This proactive approach to security involves integrating container vulnerability scanning directly into the CI/CD pipeline, shifting security left to prevent issues rather than simply responding to them.

3. Zero Trust: “Never Trust, Always Verify”

As remote work and global connectivity expand, we can no longer assume that everything inside our network is safe. The perimeter has dissolved. This is where Zero Trust comes in.

Zero Trust mandates that every request—whether from a user, a device, or an API—must be authenticated and authorised. SAS Viya is built for this reality. Unlike legacy SAS 9 deployments, Viya integrates strictly with external Identity Providers (IdPs) using modern protocols such as OpenID Connect (OIDC) or SAML.

At Selerity, we configure these environments to enforce Multi-Factor Authentication (MFA) and granular access rules. This ensures your data scientists and modellers access only what they need—nothing more, nothing less.

4. Self-Healing Infrastructure (Or: How to Sleep at Night)

Our clients in regulated sectors like Pharma and Finance can’t afford downtime. Kubernetes is the secret weapon for 24/7 availability.

Consider the SAS Logon service. In a traditional setup, a surge in login attempts could crash the service, locking everyone out until an admin manually intervenes. In a Kubernetes-managed Viya environment, the system is more intelligent. It detects the health check failure and immediately “heals” the system by spinning up a fresh instance.

The result? Continuous operation and a seamless user experience.

Conclusion: Complexity Managed. Outcomes Delivered.

Moving to a containerised environment offers undeniable benefits in security, resilience, and scalability. But let’s be honest: it introduces technical complexity. Standard security measures for monolithic servers do not translate 1:1 to containers.

That is why organisations partner with Selerity. We take ownership of the complexity, empowering your teams to focus on data outcomes, not infrastructure.

Ready to modernise?

Don’t let legacy infrastructure become a liability.

Book a Platform Health Check with Selerity today to ensure your environment is secure, scalable, and future-proof.