UPDATED 07:00 EST / MARCH 30 2021

SECURITY

Sysdig launches unified cloud and container security posture management products

Container security startup Sysdig Inc. today announced a number of new unified cloud and container security products to its lineup with the launch of continuous cloud security posture management.

The first offering, Cloud Security Posture Management for AWS, is based on Cloud Custodian, an open-source, stateless rules engine that manages AWS environments by consolidating many of the compliance scripts organizations use. The new service adds cloud asset discovery, cloud services posture assessment and compliance validation that allows teams to identify the entire attack chain and respond to threats faster. Offering automatic discovery across all cloud services, the product also can flag misconfigurations and violations of compliance and regulatory requirements.

The second new offering, Multi-Cloud Threat Detection for AWS and GCP, is based on Falco, an open-source cloud-native runtime security project from the Cloud Native Computing Foundation and Sysdig that offers alerts based on continuously inspecting cloud audit logs. Falco performs analysis within the user’s cloud account, which protects sensitive data and eliminates costs tied to exporting logs.

This service adds support for cloud threat detection via GCP audit logs, in addition to its AWS CloudTrail integration last year. The service is said to allow security teams to continuously detect suspicious activity or configuration changes across their infrastructure without relying on periodic configuration checks.

The final new offering is Cloud Risk Insights, a service that provides visual insights across interconnected cloud and container security incidents, prioritized by risk levels. Sysdig says it reduces alert noise and provides instant visibility to see the entire cloud attack chain, from a hacker exploiting a container vulnerability and accessing the cloud to one elevating privileges and performing catastrophic actions, such as cryptomining on a Kubernetes cluster.

All three new continuous cloud security services are being offered with a free tier that includes a daily check against Center for Internet Security benchmarks and continuous threat detection to ensure cloud environments remain in a secure, compliant and hardened state at all times. It also includes inline scanning for Fargate and ECR images, up to 250 images a month.

Sysdig CSPM is available now, including the free tier.

Image: Sysdig

A message from John Furrier, co-founder of SiliconANGLE:

Your vote of support is important to us and it helps us keep the content FREE.

One click below supports our mission to provide free, deep, and relevant content.  

Join our community on YouTube

Join the community that includes more than 15,000 #CubeAlumni experts, including Amazon.com CEO Andy Jassy, Dell Technologies founder and CEO Michael Dell, Intel CEO Pat Gelsinger, and many more luminaries and experts.

“TheCUBE is an important partner to the industry. You guys really are a part of our events and we really appreciate you coming and I know people appreciate the content you create as well” – Andy Jassy

THANK YOU