This document discusses how containers can improve security posture through automation and visibility. It notes that as applications are containerized, security must also automate to keep up with the volume of new images and containers. The document advocates rebuilding containers rather than patching them when vulnerabilities are found. It emphasizes gaining visibility into what applications are doing and where they are running. The document argues that security should recommend containers, not just react when developers ask to use them. Automation is needed for building, testing, delivery and security activities like vulnerability scanning across the application lifecycle.