For organizations scaling their container environments, Kubernetes provides simple, scalable and robust orchestration. As more production workloads move to microservices, Kubernetes container security has to be a first priority for enterprises.
Twistlock ensures that security scales to meet the needs of your organization — allowing you to deploy fearlessly with assurance that your images and containers are free of vulnerabilities. Twistlock enforces the security settings you need for regulatory compliance and runtime protection and cloud native firewalls secure your environment and networks from active threats.
- Automated, cluster-wide deployments Because Twistlock itself is a cloud native app, you can deploy using standard Kubernetes primitives. Run Console as a Replication Controller, attach a Persistent Volume to it for storage, and automatically deploy Defender to every node with a Daemon Set.
- No-touch Network Policy Creation: Twistlock provides advanced threat intelligence and machine learning to automatically create and enforce security models — no manual intervention required. Models are created for every image that runs in every pod and are a comprehensive list of known good behaviors across multiple dimensions: process, network, file system and system call.
- Purpose-Built for Compliance: With over 200 built-in checks covering the entirety of the Docker and Kubernetes CIS Benchmarks, Twistlock can automatically enforce compliance policies across the container application lifecycle. Import OpenSCAP policies to provide your own custom compliance rules and use our built-in templates for PCI, HIPAA, GDPR, and other regulatory regimes. View Compliance Explorer to see a real-time dashboard of your current compliance posture, history over time, and any non-compliant entities.
- No-Touch Network Policy Creation: Twistlock learns and models inter-container networking behavior at runtime, displays it in a real-time topology radar view, and automatically enforces segmentation and compartmentalization around every microservice. Learn more today.