Enterprise Security. DevOps Agility.

Container Security Solution Trusted by Federal Agencies

Seamless Container Security for Docker, Kubernetes and Beyond

Federal agencies trust Twistlock to secure their container environments and the applications that run in them. Lightweight, scalable and automated – Twistlock employs machine learning to enable automated policy creation and enforcement that integrates seamlessly throughout the development lifecycle and in all the places you work. Advanced threat intelligence allows protection to occur entirely within your environment – whether public cloud or entirely air gapped.

View the Twistlock for Federal Agencies Overview

Customer Profile

Intelligence Community Agency
The agency uses containerized applications to perform mission-related analytics and build computational models.

~100 hosts. The agency is expected to move more and more applications onto this platform.

Twistlock provides key security and compliance monitoring for their entire container environment.

Container Security - Runtime Threat Protection

Key Twistlock Capabilities

Runtime Defense

Vulnerability Management

Runtime defense protects your containers against exploits, compromises, program mistakes and configuration errors. We monitor container activities, detect policy violations, report anomalies and execute corrective actions. We do all this without changing your host, your containers, the container daemon, or your applications. Scan container images in registries, on dev workstations and on production servers for vulnerabilities and mis-configurations. We detect and report vulnerabilities in the Linux distro, app frameworks and even your customer app packages. The scanning tasks are seamlessly integrated with CI pipelines and existing processes.

Access Control


Support for smart card logon (PIV and CAC) to both Twistlock and protected resources (Docker, Kubernetes) provides multi-layered, flexible, access control, integrated with your existing directories. Enforce standard configurations, container best practices, the use of trusted registries and recommended deployment templates. You will gain assurance that your containers environments wherever they reside, remain compliant with industry or company policies.


Integrate directly into your DevOps toolchain so you can find and fix problems before they ever make it into production. Use native plugins for CI tools like Jenkins and TeamCity and with Orchestration tools including Kubernetes, ECS, Swarm and more.

Get Started with Twistlock

Choose the edition that is the right fit for you.

Enterprise Edition protects against exploits, malware and active threats with Twistlock’s advanced intelligence and machine learning capabilities. Automated policy creation and enforcement along with native integration to leading CI/CD tools provide security that doesn’t slow development. Robust compliance checks and extensibility allow full control over your environment from developer workstations through to production.

Developer Edition is an excellent starting point for individuals or teams looking to understand microservices security, but do not require the automation and the threat intelligence of the enterprise solution.

Developer Edition
Enterprise Edition
Price Free Licensed (Free 30-Day Trial)
Limitations 10 repos, 2 hosts Unlimited repos, images, hosts
Support Community Support 24/7/365 Support
Runtime Defense Manual policy creation Automated policy creation and enforcement
Vulnerability Management Open source CVE feeds only 30+ vendor, industry and proprietary feeds
Compliance Custom policy via SCAP/XCCDF extensibility Native Docker CIS, HIPAA, PCI, and more
CI/CD Integrations Native plugins for Jenkins and TeamCity. Standalone scanner for all other tools/workflows.

Get Twistlock Today!

Read The Latest on the Twistlock Blog