Security and Visibility for VMware Tanzu

Confidently secure containers, Kubernetes, VMs, and cloud services


Read 5 Keys to a Secure DevOps Workflow

VMware Cloud Solutions

NEW!! June 14 | FIND, FOCUS, and FIX the Cloud Threats that Matter with Accenture, AWS, Expel, Snyk, Sysdig and SANS

Secure VMware Tanzu from Source to Run

The Sysdig Secure DevOps Platform provides security built on an open source foundation and deep visibility to confidently run apps on VMware Tanzu. Scale simply with SaaS and DevOps integrations that help you keep pace with the dynamic nature of Kubernetes and cloud.

Secure the
build pipeline

Scan container images, VMs and hosts for vulnerabilities and misconfigurations. Integrate scanning directly within CI/CD pipelines and registries, including Harbor.

Detect and respond to runtime threats

Accurately detect threats to your VMware Tanzu infrastructure with Falco, the open-source standard for runtime security.

Continuously validate compliance

Streamline compliance controls for NIST, PCI-DSS, etc. and enable File Integrity Monitoring (FIM) for containers.

Monitor and troubleshoot

Scale Prometheus monitoring for VMware Tanzu and see performance metrics enriched with Kubernetes and cloud context.

Secure DevOps for VMware Tanzu

Vulnerability management (container scanning and host scanning) tools

Automate CI/CD pipeline and registry (e.g., Harbor) scanning without images leaving your environment. Block vulnerabilities pre-production and monitor for new CVEs at runtime for containers and hosts.

Automatically prioritize vulnerabilities based on runtime context with Risk Spotlight. Map critical vulnerabilities back to an application and dev teams.

VMware Integrations

Learn More