|
Lacework Integrates Kubernetes Features to Enhance Security Across Multi-Cloud Environments
Thursday, May 26, 2022
Polygraph Data Platform adds Kubernetes audit log monitoring, integration with Kubernetes admission controller, and Infrastructure as Code (IaC) security to help seamlessly integrate security into developer workflows
SAN JOSE, Calif., May 18, 2022 /PRNewswire/ -- Lacework®, the data-driven cloud security company, today announced new features added to the Polygraph® Data Platform which provide enhanced visibility and protection in Kubernetes environments. Through Kubernetes audit log monitoring, integration with the Kubernetes admission controller, and Infrastructure as Code (IaC) security, Lacework customers can now further minimize risks in build time and automate discovery of unusual behavior that could signify cloud account or container compromise. With these new features, Lacework is the only company which can offer automated anomaly detection that provides consistent visibility, context, and security across the entirety of a customer's multi-cloud environment from a single security platform.
According to Gartner® (1), "by 2026, more than 90% of global organizations will be running containerized applications in production, which is a significant increase from less than 40% today."
As more organizations leverage container-based application deployment to scale their businesses, they are rapidly adopting Kubernetes to manage containerized workloads. While easier to manage overall, the complexity and sheer size of Kubernetes environments makes it difficult for companies to detect threats, ensure compliance, and efficiently capture relevant security events. Existing security tools and manual procedures aren't built to secure the Kubernetes attack surface, which slows down agile development and defeats the purpose of using containers. This forces customers to employ additional Kubernetes-specific tools, further slowing down understaffed security teams with additional tool sprawl and alert fatigue. In fact, Red Hat found in its 2021 State of Kubernetes Security Report that more than half of respondents delayed deploying Kubernetes applications into production due to security concerns. Developers need more automated practices to quickly resolve issues and focus on delivering revenue-driving initiatives.
Lacework eliminates this challenge by integrating container security into the Polygraph Data Platform, providing end-to-end, integrated monitoring that enables customers to secure their cloud and Kubernetes environments from build to runtime. By consolidating disparate tools into a single platform, Lacework provides a highly automated solution that empowers organizations to seamlessly integrate security into developer workflows. The new features announced today provide comprehensive visibility, threat detection and alerts, configuration and compliance checks, and vulnerability scans:
-- Kubernetes Audit Logs Monitoring: A typical Kubernetes environment could
include thousands of pods and containers with components constantly
being created, shut down, or moved, and generating millions of events
daily. This feature enables customers to monitor Kubernetes audit logs
and all user and system actions to detect unknown and known threats.
-- Kubernetes Admission Controller: Through this integration, the Polygraph
Data Platform can scan containers for misconfigurations or
vulnerabilities prior to deployment on Kubernetes. Customers can use
pre-built or customer policies to define the criteria, threshold, and
response for a violation.
-- IaC Security: Using capabilities available following the acquisition of
Soluble, Lacework customers can now review Infrastructure as Code prior
to deployment to identify and optionally block insecure
Kubernetes-related configurations.
"Containerized workloads are already difficult for many security solutions to keep up with because of their ephemeral and constantly changing nature. At scale, it's impossible for often understaffed security teams to effectively secure these environments," said Frank Dickson, Group Vice President, Security & Trust research practice, IDC. "Any benefit organizations get from deploying Kubernetes environments is negated by security approaches which don't provide security teams with the same automation Kubernetes provides to developers."
"We chose Lacework because it provides a fully integrated platform for cloud security. Before Lacework, we lacked the granularity and depth we needed to assess vulnerabilities due to numerous disparate tools," said Michael Lyborg, Senior Vice President, Global Information Security & Enterprise IT at Swimlane. "By integrating Lacework and the Swimlane low-code automation platform we automated our container image scans. This has resulted in time savings, better prioritization of work, faster iteration and validation of builds. The integration gave us the ability to retroactively and continuously scan published images so we have a continuous real-time view of risk across our dynamic cloud environment."
"While so much innovation has focused on helping developers work more efficiently to create revenue-driving initiatives, very little has been applied to the security tools that keep businesses safe, reducing the gains of development teams and ultimately putting organizations at risk," said Adam Leftik, VP of Product, Lacework. "Security teams are as important as developers in driving revenue for businesses, and these Kubernetes features for the Polygraph Data Platform ensure they can help teams across the business innovate securely and with confidence."
The Lacework Polygraph Data Platform is the only solution that extends automated anomaly detection across AWS, Google Cloud and now Microsoft Azure and Kubernetes EKS environments. Using accurate, machine learning-based threat detection at scale, the Polygraph Data Platform empowers customers to innovate with confidence.
Kubernetes audit logs monitoring is now available to Lacework customers on AWS EKS in limited availability. The Kubernetes admission controller integration is generally available. Integration with IaC security is available to all Lacework customers.
Additional Resources:
-- Visit our team at KubeCon EMEA at booth S47 on the show floor.
-- Check out the Lacework blog to learn more about Kubernetes audit log
monitoring, our integration with the Kubernetes admission controller,
and IaC security.
-- Become an expert on security fundamentals and learn more from your
security and developer peers through Lacework Academy and the Lacework
Community.
-- Read what Lacework customers have to say about the Lacework Polygraph
Data Platform.
-- For more information about how to join the Lacework team, visit our
careers page.
(1) Gartner, "Compute Evolution: VMs, Containers, Serverless -- Which to Use When?",
Refreshed 22 March 2022, Arun Chandrasekaran, Published 1 June 2021,
https://www.gartner.com/document/4002112?ref=TypeAheadSearch
GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.
About Lacework
Lacework is the data-driven security company for the cloud. The Lacework Polygraph® Data Platform automates cloud security at scale so our customers can innovate with speed and safety. Only Lacework can collect, analyze, and accurately correlate data across an organization's AWS, Microsoft Azure, Google Cloud, and Kubernetes environments, and narrow it down to the handful of security events that matter. Customers all over the globe depend on Lacework to drive revenue, bring products to market faster and safer, and consolidate point security solutions into a single platform. Founded in 2015 and headquartered in San Jose, Calif., Lacework is backed by leading investors like Sutter Hill Ventures, Altimeter Capital, D1 Capital Partners, Tiger Global Management, Counterpoint Global (Morgan Stanley), Franklin Templeton, Durable Capital, GV, General Catalyst, XN, Coatue, Dragoneer, Liberty Global Ventures, and Snowflake Ventures, among others. Get started at www.lacework.com.
View original content:https://www.prnewswire.com/news-releases/lacework-integrates-kubernetes-features-to-enhance-security-across-multi-cloud-environments-301549594.html
SOURCE Lacework
|
|
|
|
|
|
 |
Asetek - Mandatory Notification of Trade | Jan 22, 2026
|
|
BC.GAME to Host "Stay Untamed" Night During Abu Dhabi's Packed Web3 Summit Week | Jan 22, 2026
|
|
Rent Manager Earned Best Real Estate Software Product Award and Multiple Review Badges from G2 Platform | Jan 22, 2026
|
|
Tomorrowland Brings the Magic to Shanghai for a Spectacular First Indoor Edition in China | Jan 22, 2026
|
|
Auburn University's Applied Research Institute Expands Advanced Manufacturing Capabilities with CF3D Enterprise Cell | Jan 22, 2026
|
|
California Divorce Mediation Center Unveils Modern Website Redesign | Jan 22, 2026
|
|
AMPERA ANNOUNCES LOCATION FOR GLOBAL HEADQUARTERS | Jan 22, 2026
|
|
Culture and tourism sectors thrive in Xiamen | Jan 22, 2026
|
|
AMPLIFY Named Finalist in Three Categories at the 2026 Golden Gavel Awards | Jan 22, 2026
|
|
Gemmy Alerts Customers: Fake Websites Target Holiday Decorators | Jan 22, 2026
|
|
|
|
