- Company (that provides the nominated product / solution / service): Twistlock
- Website: https://www.twistlock.com
- Company size (employees): 50 to 99
- Country: United States
- Type of solution: Software
- Approximate number of users worldwide: Hundreds
What other awards did this nomination receive in the previous 12 months?
Editor's Choice - InfoSec Awards
451 Research: Firestarter Award
In 3 bullets, summarize why this product or service is different from the competition and deserves recognition:
Discover and Protect Services Across Hybrid Cloud Environments: As providers continue to add new cloud native services, it becomes increasingly difficult for customers to ensure the apps running on them are protected. 18.11 introduced Cloud Platform Compliance, which allows customers to centrally discover all cloud native services in use across AWS, Microsoft Azure, and Google Cloud Platform (GCP), across all accounts, and in every region. Cloud Platform Compliance continuously monitors these accounts to detect when rogue services are added, and alerts end users to avoid risks introduced by rogue deployments, abandoned environments, and environments not being protected by Twistlock.
Compliance and Security Configuration Checks for Istio Service Mesh: Istio is one of the most interesting new technologies in this space because it helps simplify many formerly difficult aspects of running microservices. Notably, Istio provides load balancing, fine grained traffic routing, TLS everywhere, and service centric RBAC. What Istio doesn’t provide natively, though, is a simple way to visualize and understand interconnectivity between services. In 18.11, Twistlock integrates with Istio to discover this service mesh and uses this data to enrich the radar with details about protocols and service roles used with Istio.
Kubernetes Service Account Monitoring and Visualization: Twistlock 18.11 includes a first of-its-kind discovery and monitoring tool for Kubernetes service accounts. Integrated into the Radar dashboard, every service account associated with every resource in a cluster can be easily viewed, so that security staff can easily understand role configuration, assess the level of access provided to each service account, and mitigate risks associated with overly broad permissions. For each account, Twistlock shows detailed metadata describing the resources it has access to and the level of access it has to each of them.
Twistlock is the most complete container security platform for teams using Docker, Kubernetes, and other cloud native technologies. Twistlock integrates with any CI tool and registry, runs wherever you choose to run your VMs, containers, and cloud native applications, and leverages machine learning and real-time security intelligence to ensure that workloads are always in compliance. Now in Twistlock Enterprise v18.11, customers can easily discover cloud native services to protect against threats across hybrid environments and understand how potential vulnerabilities connect to one another. It also introduces security visualization for Kubernetes, industry-first compliance and security configuration checks for Istio, and now includes new alerting integrations with PagerDuty, Amazon Web Services (AWS) Security Hub, and IBM Security Advisor. Twistlock Enterprise also comes with new monitoring and alert providers; expanded support for Pivotal; dashboard UX improvements; enhancements to CaaS and Serverless Defenders; and improved credential manager.
Since shipping the first version of Twistlock in 2015, Twistlock has worked on 11,000 issues, pushed 5800 commits, built Twistlock more than 900 times, and shipped over 300 customer requested features to a couple hundred customers over the past 3 years.