Twistlock strengthens container security

Twistlock has announced the general availability of the Twistlock Container Security Suite and a strategic partnership with Sonatype.

  • 8 years ago Posted in

 The largest pain-point today for organizations moving to a container strategy is that containers are being adopted and managed by developers. Operations and Security do not have the level of visibility and control that they are accustomed to. At the same time, for DevOps to succeed, security and operations controls must be as agile and move as quickly as the assets to be protected. Twistlock’s Container Security Suite, the only dev-to-production security product on the market today, enables just that. The Suite allows security operations to come together with developers to achieve security control and compliance without impeding the operational benefits of container technologies.

 

With a successful beta program that included 15 enterprise customers, including Wix, AppsFlyer and HolidayCheck, Twistlock’s technologies are now available for all eligible customers worldwide. This makes it possible for many additional businesses to benefit from the vulnerability management, fine-grained access control and smart runtime protection capabilities offered by Twistlock.

 

“Security is a top priority for Wix, and Twistlock has made it easier for us to protect our customers as we adopt new technologies like containers. The integration with CVE databases has been particularly valuable in identifying and fixing vulnerabilities within containers, and the hardening policies help us enforce the same security standards throughout the application lifecycle,” said Gregory Man, manager of the system team at Wix.

 

Key Features of the Twistlock Container Security Suite:

·         Full Stack Vulnerability Management: Twistlock scans containerized applications in both image registries and in runtime to detect vulnerabilities present in the Linux distribution, application frameworks and custom-developed application code.

·         Advanced Access Control: Twistlock extends enterprise access control logic and policies to the container environment, controlling access to Docker and Kubernetes resources. The product also provides user-access analytics.

·         Smart Runtime Defense: Twistlock detects misconfigurations, malicious activities and compromises in runtime with activity monitoring and smart profiling. Smart runtime defense can prevent misconfigured containers from being launched, stop policy-violating network activities and kill misbehaving containers dynamically.

 

Twistlock’s Container Security Suite is deployed at customer organizations spanning financial services, media, hospitality, consumer technology services and government agencies. What is more, eight of the 15 customers have already deployed Twistlock in mission-critical environments, protecting live services and customer data.

 

"Having Twistlock's technology with our container deployments allows us a proactive way to manage and enforce our security policies as we add containers to our technology stack. It gives us the ability to focus on what we need to focus on the most – business innovations,” said Maximilian Sch?fmann, head of IT operations at HolidayCheck.

 

Sonatype Partnership:

As part of its continuous innovation strategy, Twistlock has formed a strategic partnership with Sonatype, the leader in software supply chain automation. The partnership will address the quality, security and traceability of the open source and other components in software builds inside a container.

 

“Containers are an important part of the software supply chain, and without visibility you can’t maintain the balance of velocity, quality and security. This partnership with Twistlock allows us to bring this much needed visibility together in one place. Every organization using Docker or other container technologies in production should have this on their radars,” said Wayne Jackson, CEO of Sonatype.

 

“From the very beginning, we engineered a security solution that is purpose-built for the container infrastructure." said Ben Bernstein, CEO and co-founder of Twistlock. 

"That means everything we do aims to preserve the agility and efficiency of the container ecosystem. We enable companies to leverage the container innovation with enterprise-grade security assurance and visibility. Our tremendous customer momentum speaks to the strong market need for such a solution to empower the container economy.”

 

SLE Micro is rapidly becoming a critical foundation of customers’ digital transformation, in...
Veritas InfoScale native deployment in Kubernetes environments, including Red Hat OpenShift, will...
Canonical has released Ubuntu 21.10 - the most productive environment for cloud-native developers...
Data from 1,200 respondents and insights from seven industry experts reveal rapid growth, some...
Civo, a pure play “cloud native” service provider, has published the result of its research on...
Now, organizations can quickly set data in motion on their private infrastructure with the...
Kubernetes, supported by a vibrant open source community, can drive outstanding innovation. To help...
New Mendix survey shows that British businesses are investing in low-code to respond to the new...