Enterprises using Mesosphere DC/OS or DC/OS Enterprise to build, manage, and run their containers at scale also leverage Twistlock to provide complete protection of their environments. Ensure that images and containers are free of vulnerabilities and compliance policies are properly implemented, while runtime protection and cloud native firewalls secure your environment and networks from active threats. Whether you’re using Marathon or Kubernetes, Twistlock adds DC/OS security at scale.
Twistlock prevents the deployment of vulnerable images across your environment with alerting and enforcement policies covering the entire CI/CD process as you build, ship, and run your applications using DC/OS, on whatever CI tooling you’re already using.
With compliance rules covering over 200 security best practices and pre-built policy templates for PCI, HIPAA, NIST 800-190, and GDPR, Twistlock can automatically enforce compliance policies across the container application lifecycle.
The Twistlock Intelligence Stream sources and aggregates vulnerability information directly from 30+ upstream projects, commercial sources, and proprietary research from Twistlock Labs — providing data others can’t, so you have the most precise and comprehensive vulnerability and threat data to protect your images and containers on DC/OS.
Vulnerability Explorer helps you understand what risks are most critical to you by factoring in runtime knowledge and advanced threat metrics about your specific environment, so you can measure and prioritize remediation of top vulnerabilities.
From network and application firewalls, to container runtime defense, to host protection — Twistlock is the only security tool you need to defend your containers running on Mesos and DC/OS. Machine-learning powered runtime protection secures your entire environment from the beginning of the build process through production.