Dynatrace announces industry ’ s first observability-driven Kubernetes Security Posture Management Solution
Qualys launches CyberSecurity Asset Management 3.0
CISO news
Dynatrace announces industry ’ s first observability-driven Kubernetes Security Posture Management Solution
ynatrace , a leader in unified observability and security , has announced the enhancement of its platform with
D new Kubernetes Security Posture Management ( KSPM ) capabilities for observability-driven protection , configuration and compliance monitoring .
The announcement comes after the rapid integration of Runecast technology into the Dynatrace platform following the company ’ s successful acquisition earlier this year .
The new Kubernetes Security Posture Management offering builds on Dynatrace ’ s existing security hardening capabilities , including Runtime Vulnerability Analytics ( RVA ) and Runtime Application Protection ( RAP ), strengthening the security of cloud-native applications on the Dynatrace platform .
These combined capabilities provide DevSecOps , security , platform engineering and Site Reliability Engineering ( SRE ) teams , who are responsible for ensuring the protection of Kubernetes environments , with an innovative solution for security posture and compliance . environments and adhering to best practices and standards ,” said KellyAnn Fitzpatrick , Senior Analyst at RedMonk .
“ Through a combination of real-time vulnerability assessments and contextual protection insights , Dynatrace ’ s new KSPM solution aims to empower teams to proactively address risks and gain complete visibility into their security posture , compliance status and attack vectors . Such solutions can enable teams to accelerate their Digital Transformation with confidence , knowing that their cloud-native environment is protected .”
“ As workloads become more dynamic , integrating KSPM into the deployment lifecycle is essential for securing Kubernetes
Dynatrace ’ s Kubernetes Security Posture management is expected to be available in the second half of 2024 .
Qualys launches CyberSecurity Asset Management 3.0
Q ualys has announced the launch of CyberSecurity Asset Management 3.0 , an expansion of the Enterprise TruRisk Platform .
This update integrates its leading vulnerability assessment capability into its External Attack Surface Management ( EASM ) solution delivering an accurate , real-time view of the external attack surface that eliminates more false positives to mitigate the risk of unknown assets .
Traditionally , cybersecurity teams rely on disparate sources like standalone external scanning tools , IT-centric databases such as configuration management databases ( CMDBs ), and API-based integrations to piece together asset inventories . EASM tools have relied on banner-grabbing methods that produce stale , incomplete asset data snapshots . As a result of this piecemeal approach to asset discovery , the average enterprise is blind to 38 % of its assets at any given time .
Qualys CyberSecurity Asset Management 3.0 extends its leading asset discovery for all types of environments – including an EASM
engine for real-time and accurate assessment of external attack surface risks , built-in passive sensing for IoT and rogue devices using the already-deployed Qualys agent , and third-party API-based connectors to complement Qualys sensors . This unified approach not only consolidates asset discovery to a single , unified solution but also introduces a first-of-its-kind EASM lightweight vulnerability scanner to pinpoint critical vulnerabilities immediately upon discovery .”
“ With Qualys CyberSecurity Asset Management , we have a consolidated view of asset and cyber-risk data without requiring separate solutions to scan different areas of the attack surface ,” said Mike Orosz , VP Information and Product Security , CISO at Vertiv .
10 WWW . INTELLIGENTCISO . COM