Google Cloud Platform Security

Full Lifecycle, Full Stack Security for Google Cloud Platform

Enterprises using Google Cloud Platform (GCP) to build, manage, and run their containers and serverless apps also leverage Twistlock to provide complete full-stack, full-lifecycle security of their cloud environments. Twistlock ensures that images and containers are free of vulnerabilities and compliance policies are implemented, while runtime protection and cloud native firewalls secure your environment and networks from active threats. Twistlock is proud to be an official Google Cloud Platform (GCP) Security Partner.

Vulnerability Prevention from Development to Runtime

Twistlock detects vulnerabilities in your images throughout their lifecycle, from the beginning of the CI process, to your registries, to all your production deployments on Google Compute Engine (GCE) and Google Kubernetes Engine (GKE). By integrating with Google Container Registry (GCR) and Google Container Builder (GCB), Twistlock provides immediate vulnerability status and enforcement as your developers build and ship images.

Compliance Across the Application Lifecycle

With compliance rules covering over 300 security best practices and pre-built policy templates for specific regulations like HIPAA, PCI, GDPR, and NIST SP 800-190, Twistlock can automatically enforce compliance from build to runtime. Twistlock is the only platform that continuously monitors your hosts, images, and containers for compliance.

Integrated with Cloud Security Command Center

Seamlessly send vulnerability and compliance data, runtime security alerts, firewalling events, and more from Twistlock to Google Cloud Security Command Center. Twistlock provides a native integration so you can easily access any data you prefer in GCSCC.

Risk Prioritization Tailored to Your Environment

Twistlock ranks vulnerabilities and compliance issues by leveraging our proprietary risk score, a combination of CVSS score and metrics about your specific environment, so you can measure and prioritize remediation of top risks. The Twistlock Intelligence Stream ensures the most precise, layer-aware, vulnerability analysis with zero false positives.

Runtime Security for GKE

From network and application firewalls, to container runtime defense, to host protection, Twistlock is the only security tool you need to defend your applications running on GKE against vulnerabilities and security threats. Twistlock deploys natively on GKE to automatically provide automatically-created explicit allow list protection for every pod along with microservices-aware layer 3 and layer 7 firewalls.

Security for Google Cloud Functions

Twistlock automatically discovers all the functions in your accounts, analyzes them to identify vulnerable components, and helps you understand relative risk by including advanced metadata, such as attack vector, complexity, and whether exploits exist in the wild.

Guide to Cloud Native Microservices

Get it now

“Twistlock enables us to pinpoint vulnerabilities, block attacks, and easily enforce compliance across our environment – giving our team the visibility and control needed to run containers at scale.”

Anthony Scodary Co-Founder, Gridspace | GCP + Twistlock Customer
Kubernetes Deployment & Security Patterns
Shine a light on answering the question: How well does Kubernetes work in production? Get data research and findings about Kubernetes deployment and security practices.