Instance container visibility

Increase security posture with container visibility

With the growing adoption of containers and cloud deployments, there is an increasing challenge for organizations to keep track of what containers are out there, and how they are being used and protected. Containers can pose a security risk, both during development and at runtime. Customers need an efficient and effective way to gain visibility and insight into their containers as well as protect them. A centralized dashboard view of containers and instances across AWS allows customers to monitor instances, quickly identify potential threats, and swiftly take action.

Increase your security posture with container visibility

Solutions

Trend Micro

Trend Micro Deep Security for Containers offers container insight and protection that scales across the CI/CD pipeline. Trend Micro Deep Security prevents and detects intrusion and malicious changes with a broad set of security controls spanning the entire development pipeline.

Trend Micro Deep Security for Containers allows customers to:

  • Automate manual security processes that integrate into their CI/CD pipeline using APIs for pipeline management, deployment, monitoring and more.
  • Accelerate compliance and streamline audit evidence gathering with a single security tool that delivers intrusion prevention (IPS), application control, anti-malware, predictive machine learning, integrity monitoring, log inspection, and content filtering.
  • Receive host security with layered protection that ensures image integrity and secures the host from container breaches throughout your continuous delivery pipeline, from design to runtime.
  • Identify and prevent security gaps by enforcing consistent security in a single solution across your traditional, virtualized, and cloud environments.

Trend Micro Deep Security lowers the cost and complexity of identifying and securing workloads and containers, and includes purchase options aligned to the way businesses want to buy.

Refer to the diagram below to see how it works:

Trend Micro Deep Security for Containers
  • Account C indicates that visibility can be gained into containers with Deep Security if the agent is running on an instance and Docker is also being used on that instance.
  • Account D with Amazon EKS (EKS) can do the same, provided the Amazon EC2 (EC2) instance is running the Deep Security agent with Docker. Then a pipeline scan of images with Deep Security Smart Check in EKS can be performed.
  • Account E-Smart Check does not deploy into EC2 and therefore won’t be able to do scanning, but visibility can be gained into containers with Deep Security if the agent is running on the EC2 instance and Docker is also being used on that instance.

 

webinar icon

Webinar:  How to build a security visibility strategy in the cloud

Learn from SANS and AWS on how visibility in the cloud differs from more traditional security visibility and how organizations can establish a cloud visibility strategy.

Webinar: How to build a security visibility strategy in the cloud

Learn from SANS and AWS on how visibility in the cloud differs from more traditional security visibility and how organizations can establish a cloud visibility strategy.

PIVVOT

Pivvot gains visibility into their containers

Pivvot is a software company that provides cloud-based intelligent asset management systems to infrastructure organizations. They needed to ensure security while pushing rapid innovation. To be agile and maintain constant release cycles, Pivvot relies on a cloud-based microservices architecture. It has moved to Docker and Amazon Elastic Container Service (ECS) in AWS for a high-performance container orchestration.

Pivvot manages highly sensitive customer data and delivers solutions to a varied customer base. Working with clients in industries where security is key, Pivvot maintains a highly secure application development pipeline. The constant changes in the threat environment create an ongoing challenge and Pivvot must go from build to deploy quickly with confidence that their solutions are secure.

With Trend Micro Deep Security Smart Check, security is embedded into Pivvot’s development process. Every one of Pivvot’s customers is unique in their needs. By applying smart security controls that meet security, compliance, and customer requirements, Smart Check helps Pivvot build securely so it can focus on customer enablement and business growth.

Jason Cradit's quote

We’re able to protect a container pre-runtime by understanding what’s going on in the environment from a security perspective before it even hits production.

- Jason Cradit, Sr. Director, Information & Technology, Pivvot
AWS Marketplace

AWS Marketplace is a digital catalog with thousands of software listings from independent software vendors that make it easy to find, test, buy, and deploy software that runs on AWS.

Have questions? Have tips?

We're here to help you get started with AWS Marketplace. Ask for or give advice on the AWS Marketplace discussion forum.

Have questions? Have tips?

We're here to help you get started with AWS Marketplace. Ask for or give advice on the AWS Marketplace discussion forum.