Alert Logic’s update to the Network Intrusion Detection System (NIDS) for containers adds container log management and extends capabilities beyond Amazon Web Services (AWS) to Microsoft Azure, on-premises and hosted environments.
Organizations gain a picture of their risk through visibility into any workload in any container, as well as the ability to collect, aggregate and search container log data for security and compliance.
According to 451 Research Principal Analyst Jay Lyman, containers can enable faster development cycles, increased resource efficiency, and application portability, translating to a fast-growing market expected to top $4 billion by 2022. “Nevertheless, security concerns and the difficulty of inspecting and monitoring container network traffic are among impediments that cause some organizations to delay their adoption of container technology.”
Available in Alert Logic Cloud Defender and Alert Logic Threat Manager solutions, these expanded capabilities provide businesses with a single interface to manage the security of all containers, track events and incidents, and gain visibility into their attack surface.
Coverage includes real-time detection of known and unknown exploits that target applications running in containers on Docker, Kubernetes, Elastic Beanstalk, Docker Swarm, CoreOS, Azure Kubernetes Service, Amazon Elastic Container Service, and Amazon Elastic Container Service for Kubernetes.
Because the new capabilities secure multi-cloud and multi-platform environments, container security is portable across platforms, allowing customers to take advantage of cost and operational efficiencies.
“Running container deployments without blind spots on AWS, Azure and on-premises is essential to our business, to our client service, and for compliance requirements,” said Mike Santimaw, Rent-a-Center Vice President of Information Security, Innovation Labs & Corporate Solutions.
“Alert Logic’s container security already provides the real-time visibility we need on AWS, and we are excited for expanded capabilities for Azure and on-prem.”
“Our NIDS-based approach to container security, combined with new container log management capabilities and integration across an organization’s total—and often complex—environment, provides a more comprehensive view than other solutions available today,” said Chris Noell, Senior Vice President, Engineering at Alert Logic.
“Businesses employ containers for ease and speed of deployment, yet struggle to maintain consistent security as they move containers across cloud, hosted and on-prem environments. Alert Logic solves this challenge by making security as portable as your containers, without any lag or disruption to business operations.”
Now organizations can simplify their approach by leveraging one solution to protect all workloads and to reduce complexity in multiple areas:
- Visualize which containers and hosts may be compromised,
- Examine associated metadata,
- Explore remediation recommendations,
- Support existing security policies and workflow,
- Provide a holistic view of attacks.
“Agility, security, and compliance are required competencies for organizations operating in today’s world of hybrid and multi-cloud deployments,” said Tanaz Gould, Consultancy Director, Claranet.
“Containers are fast-becoming the de facto deployment approach for many organizations. Alert Logic’s new capability to detect threats to containers in multiple environments will give confidence to customers to move even more aggressively in adopting containers, supporting the benefit of moving workloads from one environment to the next, all while providing centralized visibility. This is a much-needed and important innovation; we applaud Alert Logic for bringing it to market.”
Products + services approach
The Alert Logic container security solutions work by analyzing patterns in the data packets as they traverse the container environment to detect cyberattacks in real-time and provide a graphical representation of the compromised container and its relationships.
Alert Logic’s approach to log management simplifies container security by using the same container to collect logs and analyze network traffic. The intrusion detection capabilities for containers are fully managed by Alert Logic’s 24×7 security and compliance experts in the company’s Security Operations Centers.
When a container threat is detected, Alert Logic’s security experts prioritize the threat, escalate within 15-minutes, provide visual context, and offer remediation advice for customers.