Google Cloud Platform Security

Security for Cloud Native Apps on GCP

Enterprises using Google Cloud Platform to build, manage, and run their containers and serverless apps also leverage Twistlock to provide complete security of their environments. Twistlock ensures that images and containers are free of vulnerabilities and compliance policies are implemented, while runtime protection and cloud native firewalls secure your environment and networks from active threats. Twistlock is proud to be an official Google Cloud Platform Security Partner.

Vulnerability Prevention from Development to Runtime

Twistlock detects vulnerabilities in your images throughout their lifecycle, from the beginning of the CI process, to your registries, to all your production deployments on Google Compute Engine (GCE) and Google Kubernetes Engine (GKE). By integrating with Google Container Registry (GCR) and Google Container Builder (GCB), Twistlock provides immediate vulnerability status and enforcement as your developers build and ship images.

Compliance Across the Application Lifecycle

With compliance rules covering over 200 security best practices and pre-built policy templates for specific regulations like HIPAA, PCI, GDPR, and NIST SP 800-190, Twistlock can automatically enforce compliance from build to runtime. Twistlock is the only platform that continuously monitors your hosts, images, and containers for compliance.

Integrated with Cloud Security Command Center

The Twistlock Intelligence Stream sources and aggregates vulnerability information directly from 30+ upstream projects, commercial sources, and proprietary research from Twistlock Labs. This powerful data is integrated with Cloud Security Command Center so you have the most precise and comprehensive vulnerability and threat data to protect images, containers, and serverless functions on GCP.

Risk Prioritization Tailored to Your Environment

Twistlock ranks vulnerabilities and compliance issues by leveraging our proprietary risk score, a combination of CVSS score and metrics about your specific environment, so you can measure and prioritize remediation of top risks. The Twistlock Intelligence Stream ensures the most precise, layer-aware, vulnerability analysis with zero false positives.

Runtime Security for GKE

From network and application firewalls, to container runtime defense, to host protection, Twistlock is the only security tool you need to defend your applications running on GKE against vulnerabilities and security threats. Twistlock deploys natively on GKE to automatically provide automatically-created explicit allow list protection for every pod along with microservices-aware layer 3 and layer 7 firewalls.

Security for Google Cloud Functions

Twistlock automatically discovers all the functions in your accounts, analyzes them to identify vulnerable components, and helps you understand relative risk by including advanced metadata, such as attack vector, complexity, and whether exploits exist in the wild.

Twistlock enables us to pinpoint vulnerabilities, block attacks, and easily enforce compliance across our environment – giving our team the visibility and control needed to run containers at scale.”

Anthony Scodary Co-Founder, Gridspace | GCP + Twistlock Customer
Now Tech: Container Security, Q4 2018 Forrester’s Overview of 24 Container Security Vendors
Security pros, infrastructure architects, and devops leaders can use this report to understand the value of a container security provider and review the current market landscape.