As I go through your requirements it seems to be regarding container security and orchestrator is K8s.
I did POC of leading container Security OEM that are Aquasec, Twistlock(Palo Alto Prisma), Qualys, Sysdig etc to check which solution meet customer requirements according to customer proposed Use cases and environment. apart from that we can use their free versions as well. We can achieve security by native security capabilities as well. I can do assessment if your existing security controls can fulfilled your requirements.
Tasks did are following:
• Deployed Aqua and Twistlock Management Servers on cloud and On-premise.
• Integrate with Containers platforms and their Orchestrators that can be Kubernetes, Openshift deployed on-premise or in Cloud (ECS, EKS, ECR, Fargate, AKS, ACS, ACR, GKE, GCR).
• Integrate with multiple Vendor CI/CD pipeline that are Jenkins, Azure DEVOPS.
• Integrate with Cloud Subscriptions, Container repositories (ACR, ECR), SIEM solutions, Secret key Stores and Authentication Server.
• Create, test and fine tune the Image Assurance, Compliance Assurance, Firewall Assurance, Host Assurance and Runtime Defense policies.
• Create Customizable dashboards and reports.
• Use the Native Container and Kubernetes Security Features.
• Have a strong background on Containers their Orchestration and DEVSECOPS.
Proposed the Architecture aligned with NIST, CIS, CSA etc
Test out of box Automation Use cases and Implement the same.