Aqua Security Software Ltd. said today it’s expanding its portfolio of cloud native security products.

The company, which has raised more than $130 million in funding, sells tools that can help to protect container-based, cloud native and serverless applications from malware and malicious attacks.

Aqua’s tools enable developers to automate and improve container security and compliance posture, monitor usage and control user access. They are designed to give users full visibility into container activity, allowing them to detect and prevent attacks and suspicious activity in real time. By integrating with the application lifecycle and orchestration tools, Aqua’s platform can also automate security processes while helping to enforce regulatory compliance.

These kinds of watertight security tools are increasingly in demand in an age when enterprises are becoming more reliant on software containers, which are used by developers to build apps that can run on any computing infrastructure. They’re equally sought after by developers of serverless apps, where the management and allocation of servers and resources are completely managed by cloud providers.

Today’s updates include the launch of a new product called Aqua Wave, which is a software-as-a-service offering that’s designed to secure both applications as they’re being built and the infrastructure they’re deployed on.

Aqua Wave is made up of three separate products, including an updated version of the company’s Cloud Security Posture Management tool, and its Vulnerability Scanning and Dynamic Threat Analysis tools. The main piece of the puzzle is Aqua CSPM, which helps to create a “self-healing” cloud infrastructure that can perceive when it’s not operating correctly and make the necessary adjustments to restore itself to normal operation.

CSPM works by scanning the open-source infrastructure as code tools used by public cloud platforms such as Amazon Web Services, Microsoft Azure, Google Cloud Platform and Oracle Cloud, in order to find and fix any weaknesses within their serverless deployment templates, the company said.

In addition, the company announced the launch of Aqua Enterprise, its new flagship cloud-native security platform that Aqua co-founder and Chief Executive Dror Davidoff said helps customers address the need for a complete “cloud native application protection platform.”

In an interview with SiliconANGLE, Davidoff said Aqua Enterprise integrates the company’s original container security product, Aqua CSP, with the new CSPM and Dynamic Threat Analysis tools.

“Most importantly, the new solution is now available as SaaS, where previously Aqua CSP was only available for self-hosted customers or on-premises,” Davidoff said. “We expect this will be attractive to a broader range of customers, and that many will choose to run in a hybrid mode, using some of our products on-premises or self-hosted, and consuming others via the cloud as software as a service.”

The updated offering comes with new cloud-based virtual machine security capabilities that improve things such as file integrity monitoring and Linux system and Windows Registry integrity, the company said. In addition, it offers new risk-based insights that prioritize any potential vulnerabilities it finds according to specific, contextual customer environment risks.

Davidoff said Aqua Enterprise also offers several new capabilities for larger enterprise deployments.

“Vulnerability prioritization allows security teams to focus on those items which represent the most risk, which is a challenge for large deployments where the quantity of vulnerabilities can be overwhelming,” he said. “Also for larger enterprises, the ability to distribute responsibility for certain deployments is critical to managing an organizationwide security platform.”

Image: Aqua Security