Expanding the IBM & Sysdig relationship to manage cloud security risk

By Eric Carter - MAY 27, 2020


IBM Sysdig OEM

Today, we are pleased to announce the expansion of Sysdig’s relationship with IBM to extend cloud security governance with IBM Cloud Pak for Multicloud Management. Through a new OEM agreement, Sysdig Secure and the Sysdig Secure DevOps Platform are now available through IBM and IBM Business Partners. The combined IBM and Sysdig offering delivers centralized cloud visibility, governance and automation with in-depth container security intelligence for Red Hat OpenShift.

Containers and Kubernetes are fueling the move to hybrid and multicloud architectures. To reap the true benefits of a multicloud environment, cloud teams must address the complexity of visibility, security, and governance. Sysdig, an industry leader for monitoring and security of cloud-native workloads, addresses security and compliance requirements across all the stages of the cloud-native lifecycle. Cloud Pak for Multicloud Management centralizes visibility, governance and automation for containerized workloads across clusters and clouds into a single dashboard.

“Explosive growth in cloud applications built on containers has increased the importance of implementing cloud-native security and management to reduce risk across clusters and clouds,” explains Pratik Gupta, CTO and Offering Manager, Cloud Pak for Multicloud Management, IBM. “The expanded IBM and Sysdig collaboration is designed to make it easier for enterprises to keep pace with security, governance and compliance in highly complex environments.”

Combining the Sysdig Secure DevOps Platform with Cloud Pak for Multicloud Management is designed to deliver an enterprise-ready, fully integrated cloud management and security solution.

Addressing the Unique Security Requirements of Containers

As organizations ramp container usage in production, they face operational challenges in maintaining the security and compliance of cloud-native applications. New paradigms with containers, microservices, and hybrid cloud workloads disrupt the way enterprises implement security processes. In addition, the portability and isolation of containers make it harder to see what’s happening within and across services.

Expanded Sysdig and IBM relationship delivers centralized cloud and container security with IBM Cloud Pak for Multicloud Manager Click to tweet

Sysdig helps solve these challenges. Designed for cloud-native environments, the Sysdig Secure DevOps Platform sees inside containers to help enterprises detect and stops threats and accelerate incident response with in-depth container forensics. Runtime security policies, built on CNCF open-source project Falco, are available out of the box with Sysdig Secure to detect container environment threats. Below are a few examples of the types of runtime activity that are detected using Sysdig:

  • Accessing cryptomining networks
  • Creating privileged pods
  • Executing disallowed container and Kubernetes activity
  • Exfiltration of sensitive info
  • Suspicious container, filesystem, and network activity
  • Launching privileged containers
  • Running a terminal shell in a container
  • Suspicious Kubernetes user activity
  • Suspicious package management changes<
  • Unexpected process activity

In addition to detecting security issues, Sysdig Secure can also take remediation steps such as stopping or pausing impacted containers as well as making a system call capture of activity before, during and after an incident. These captures enable DevOps and security teams to perform forensics, even after containers are gone or restarted on other nodes.

Centralizing container security findings from Sysdig into Cloud Pak for Multicloud Management expands the breadth and depth of information available to OpenShift users to help increase the effectiveness of managing security and governance. Runtime security findings detected across your managed clusters are displayed in the Cloud Pak for Multicloud Management interface with full context of where the issue has occurred in the OpenShift environment. Each finding is also classified by severity and applicable compliance and security standards. This allows filtering to identify, understand, and resolve high priority issues.

The integration also features Single Sign-On (SSO), enabling a direct link to the Sysdig console directly from the Cloud Pak for Multicloud Management menu. This streamlines investigations that required a deeper dive into the details captured and available in Sysdig Secure.

Watch this video to see more

Confidently Run Cloud-Native Apps in Production with IBM and Sysdig

IBM Cloud Pak for Multicloud Management with Sysdig Secure provides control to help enterprises drive operational efficiency, reduce risk, and accelerate time to value for private, hybrid, and multi-cloud environments. The newly expanded IBM and Sysdig relationship helps make it even easier for customers adopt a consistent, automated approach to managing and securing cloud-native and containerized apps.

You can get started today! We’re providing an extended 60-day free trial of the Sysdig Secure DevOps Platform to Red Hat OpenShift users so you can experience for yourself the ability to automate security and compliance into your DevOps workflow. Request your free trial here.

Subscribe and get the latest updates