Mesosphere DC/OS Security

Security for Mesosphere DC/OS

Enterprises using Mesosphere DC/OS or DC/OS Enterprise to build, manage, and run their containers at scale also leverage Twistlock to provide complete full-stack, full-lifecycle protection of their environments. Ensure that images and containers are free of vulnerabilities and compliance policies are properly implemented, while runtime protection and cloud native firewalls secure your environment and networks from active threats. Whether you’re using Marathon or Kubernetes, Twistlock provides Mesosphere DC/OS Security at scale.

Vulnerability Prevention from Development to Runtime

Twistlock prevents the deployment of vulnerable images across your environment with alerting and enforcement policies covering the entire CI/CD process as you build, ship, and run your applications using DC/OS, on whatever CI tooling you’re already using.

Implement CIS Benchmarks

With compliance rules covering over 200 security best practices and pre-built policy templates for PCI, HIPAA, NIST 800-190, and GDPR, Twistlock can automatically enforce compliance policies across the container application lifecycle.

Advanced Threat Intelligence

The Twistlock Intelligence Stream sources and aggregates vulnerability information directly from 30+ upstream projects, commercial sources, and proprietary research from Twistlock Labs — providing data others can’t, so you have the most precise and comprehensive vulnerability and threat data to protect your images and containers on DC/OS.

Risk Prioritization Tailored to Your Environment

Vulnerability Explorer helps you understand what risks are most critical to you by factoring in runtime knowledge and advanced threat metrics about your specific environment, so you can measure and prioritize remediation of top vulnerabilities.

Kubernetes Deployment & Security Patterns
Shine a light on answering the question: How well does Kubernetes work in production? Get data research and findings about Kubernetes deployment and security practices.