Container security startup Sysdig Inc. today announced a number of new unified cloud and container security products to its lineup with the launch of continuous cloud security posture management.

The first offering, Cloud Security Posture Management for AWS, is based on Cloud Custodian, an open-source, stateless rules engine that manages AWS environments by consolidating many of the compliance scripts organizations use. The new service adds cloud asset discovery, cloud services posture assessment and compliance validation that allows teams to identify the entire attack chain and respond to threats faster. Offering automatic discovery across all cloud services, the product also can flag misconfigurations and violations of compliance and regulatory requirements.

The second new offering, Multi-Cloud Threat Detection for AWS and GCP, is based on Falco, an open-source cloud-native runtime security project from the Cloud Native Computing Foundation and Sysdig that offers alerts based on continuously inspecting cloud audit logs. Falco performs analysis within the user’s cloud account, which protects sensitive data and eliminates costs tied to exporting logs.

This service adds support for cloud threat detection via GCP audit logs, in addition to its AWS CloudTrail integration last year. The service is said to allow security teams to continuously detect suspicious activity or configuration changes across their infrastructure without relying on periodic configuration checks.

The final new offering is Cloud Risk Insights, a service that provides visual insights across interconnected cloud and container security incidents, prioritized by risk levels. Sysdig says it reduces alert noise and provides instant visibility to see the entire cloud attack chain, from a hacker exploiting a container vulnerability and accessing the cloud to one elevating privileges and performing catastrophic actions, such as cryptomining on a Kubernetes cluster.

All three new continuous cloud security services are being offered with a free tier that includes a daily check against Center for Internet Security benchmarks and continuous threat detection to ensure cloud environments remain in a secure, compliant and hardened state at all times. It also includes inline scanning for Fargate and ECR images, up to 250 images a month.

Sysdig CSPM is available now, including the free tier.

Image: Sysdig