SmartBear has appointed Dan Faulkner, the company’s Chief Product Officer, as Chief Executive Officer.
Sysdig Announces Sysdig Secure 2.0
June 14, 2018
Sysdig introduced Sysdig Secure 2.0, a way for enterprises to secure containers and microservices.
The latest version adds vulnerability management, more than two hundred compliance checks, and security analytics. The Sysdig Cloud-Native Intelligence Platform is the only technology to offer unified security, monitoring, and forensics for containers and microservices, giving users a robust view of the health and risk profiles of their cloud-native applications.
Sysdig Secure’s vulnerability management capabilities help organizations bring application security, compliance, and quality closer to the developer. Sysdig Secure ensures that as companies scale, their security scales at the same rate, allowing DevOps to deploy knowing all images and containers are vulnerability free, the microservices are in compliance, and they can defend their applications from compromise.
Vulnerability Management:
- Static image scanning – Sysdig Secure 2.0 can parse container images and identify vulnerable packages, libraries, and configurations before a deployment, ultimately enabling a more secure environment and driving consistent processes across development teams.
- CI/CD integrations – Sysdig Secure 2.0 adds a native Jenkins plugin, which adds a Sysdig Secure step to the CI pipeline and enables companies to automate container image scanning. With each fail build, the system automatically evaluates the image against policy and forces compliance before an image progresses in the pipeline.
- Quarantine or kill vulnerable images – Sysdig Secure 2.0 can take actions like killing or quarantining a container if vulnerabilities or exposed credentials are found, reducing the risk of a security breach.
- Runtime vulnerability management and scanning – Sysdig Secure 2.0 manages, tracks, and updates vulnerability data for containers in production. Sysdig Secure 2.0 also enriches it with Kubernetes metadata to provide context when fixing vulnerabilities across distributed applications.
Compliance:
- Sysdig Secure 2.0 eases the pain of measuring and enforcing compliance across a distributed environment through compliance controls, audit checks, policies, and results.
- Sysdig automatically scans the infrastructure with requirements based on Center for Internet Security (CIS) configurations and hardening benchmarks. Sysdig allows users to scope and schedule Docker and Kubernetes benchmarks to measure and maintain compliance.
Security Analytics:
Effective container runtime security hinges on security response teams being able to quickly detect, analyze, and respond to security threats on live containers – from detection, to remediation, to forensics. Sysdig Secure 2.0 provides rich metrics about events, compliance, and vulnerabilities over time, enabling deeper analytics and a better understanding of the environment. Security metrics tied back to containers, images, hosts, and Kubernetes entities enable users to easily determine how different organizations, applications, and services are trending in the security posture.
“Due to the newness of containers and the dynamic environment, container security for cloud-native applications poses several new challenges,” said Loris Degioanni, CTO and founder, Sysdig. “Sysdig Secure 2.0 ensures that developers, operations, and risk professionals have a single source of intelligence to monitor and secure their applications.”
Sysdig Secure is available as a standalone technology or as a part of the unified Sysdig Cloud-Native Intelligence Platform, which includes Sysdig Monitor. Sysdig Secure 2.0 is currently available as a private beta.
Industry News
January 07, 2025
Horizon3.ai announced the release of NodeZero™ Kubernetes Pentesting, a new capability available to all NodeZero users.
January 06, 2025
Veracode acquired certain assets of Phylum, including its malicious package analysis, detection, and mitigation technology.
January 06, 2025
AppViewX announced the completion of its acquisition by Haveli Investments.
December 19, 2024
Check Point® Software Technologies Ltd. has been recognized as a Leader in the 2024 Gartner® Magic Quadrant™ for Email Security Platforms (ESP).
December 19, 2024
Progress announced its partnership with the American Institute of CPAs (AICPA), the world’s largest member association representing the CPA profession.
December 18, 2024
Kurrent announced $12 million in funding, its rebrand from Event Store and the official launch of Kurrent Enterprise Edition, now commercially available.
December 18, 2024
Blitzy announced the launch of the Blitzy Platform, a category-defining agentic platform that accelerates software development for enterprises by autonomously batch building up to 80% of software applications.
December 17, 2024
Sonata Software launched IntellQA, a Harmoni.AI powered testing automation and acceleration platform designed to transform software delivery for global enterprises.
December 17, 2024
Sonar signed a definitive agreement to acquire Tidelift, a provider of software supply chain security solutions that help organizations manage the risk of open source software.
December 17, 2024
Kindo formally launched its channel partner program.
December 16, 2024
Red Hat announced the latest release of Red Hat Enterprise Linux AI (RHEL AI), Red Hat’s foundation model platform for more seamlessly developing, testing and running generative artificial intelligence (gen AI) models for enterprise applications.
December 16, 2024
Fastly announced the general availability of Fastly AI Accelerator.
December 12, 2024
Amazon Web Services (AWS) announced the launch and general availability of Amazon Q Developer plugins for Datadog and Wiz in the AWS Management Console.
