- Website: http://www.cavirin.com
- Company size (employees): 50 to 99
- Country: United States
- Headquarters Region: North America
In 3 bullets, summarize why this company is different from the competition and deserves recognition:
Cavirin reduces the change of breach for organizations by providing continuous security assessment and remediation across physical, public, and hybrid cloud workloads for AWS, Microsoft Azure, Google Cloud Platform, VMware, KVM, and Docker.
The cloud-agnostic solution offers continuous visibility, is agentless and API-driven, and scales to the largest physical and virtual infrastructures.
For regulated industries, Cavirin offers up-to-the-minute compliance assessments, , supplying audit-ready evidence as measured by every major regulatory and security best practice framework including CIS, DISA, PCI and HIPAA.
In less than 300 words, summarize the achievements of the company in the nominated category
Achievements this year:
Announced its fourth generation elastic security platform performing security compliance and risk assessments for complex IT infrastructure at enterprise scale. The agentless architecture is capable of running trusted, deep security scans across distributed infrastructure regardless of the topology such as private, hybrid, and public clouds
Added Google Cloud: At Cavirin,we look at cloud security through a simple prism: regardless of what cloud an enterprise may adopt, cloud security assessment/monitoring must be simple, canonical and consistent across the clouds. Within Cavirin’s cloud security products the security orchestration is straight forward: with a few mouse clicks from our Control Plane User Interface (or with the invocation of a few REST APIs, if you are a DevOps or SecOps professional), you can discover your GCP infrastructure assets, identify the resources with comprehensive details, assess & harden the resources against security benchmarks (CIS & DISA), and do this automatically and continuously.
The primary objective of this practice, assisted by Cavirin’s products, is to have a “security companion” for your GCP infrastructure. Fortunately, Cavirin has also the most comprehensive set of OS hardening rules that can automatically test any number of operating system versions that may be installed and operated on GCP running critical workloads. These rules and the automated tests enable security assessment and continuous monitoring and significantly reduce the attack surfaces of our customers’ infrastructure.
Docker Support: Cavirin is helping its customers run Docker-based applications in a safe and secure way. Our agentless analysis supports discovery and hardening of the full containerized infrastructure stack, to include the Docker engine host, any virtualization, and the containers. It also includes the CIS Docker benchmark, as well as industry standards such as HIPAA, PCI, SOC2 and NIST.
Cavirin also supports Kubernetes deployments, ensuring the security of the container orchestration layer.