Elastic N.V. today announced expanded capabilities for Elastic Security, including cloud security posture management for Amazon Web Services, container workload security and cloud vulnerability management.

The new releases build on Elastic’s previously released Kubernetes security posture management and Cloud Workload Protection Platform capabilities to deliver what the company claims to be the only security analytics solution that includes complete cloud-native application protection for AWS.

The problem Elastic aims to address is that as organizations move to cloud-first models, mistakes such as cloud misconfigurations lead to compromise. Research from Elastic Security Labs found that a third of attacks in the cloud now leverage credential access, indicating that users overestimate the security of their cloud environments and fail to configure and protect them adequately.

Elastic’s suite of cloud security capabilities now includes cloud workload protection. It expands existing runtime security for traditional endpoints to enable cloud security teams to gain deep visibility into the entire runtime workload. Support includes standalone Linux workloads, virtual machines and infrastructure hosted in AWS, Google Cloud and Microsoft Azure.

Container Workload Protection delivers cloud security teams deep visibility into container workloads in managed Kubernetes environments. The service includes pre-execution runtime analysis for workloads running in Amazon Elastic Kubernetes Services, Google Kubernetes Engine and Azure Kubernetes Service environments.

Cloud Security Posture Management allows cloud security teams to continuously detect and remediate misconfigurations across workloads in AWS and Amazon EKS in real time. The service supports Center for Information Security benchmark controls, out-of-the-box integrations and posture management dashboards and reports.

Cloud Vulnerability Management uncovers cloud-native vulnerabilities in AWS EC2 workloads with minimal resource utilization on workloads. It does so while enumerating vulnerabilities with risk context to help cloud security teams identify and respond to potential risks.

“Elastic Security is the only unified security solution offering SIEM, endpoint and cloud security capabilities — rooted in data management and analytics — that enables customers to protect, investigate and respond to threats across their entire infrastructure,” Santosh Krishnan, general manager of Elastic Security at Elastic, said ahead of the release. “The expansion of Elastic Security’s comprehensive cloud security capabilities provides organizations with the power they need to modernize their cloud security operations, improve attack surface visibility, reduce vendor complexity and accelerate remediation.”

Ken Exner, chief product officer of Elastic, spoke with theCUBE, SiliconANGLE Media Inc.’s livestreaming studio, in December, when he discussed why observability and security are at the heart of Elasticsearch:

Image: Elastic