Sysdig Platform Architecture

Confidently run containers, Kubernetes, and cloud


Start Free

Watch On Demand! FIND, FOCUS, and FIX the Cloud Threats that Matter with Accenture, AWS, Expel, Snyk, Sysdig and SANS

Sysdig Platform Architecture

ServiceVision

Context

Enriches data with metadata from cloud providers, Kubernetes, and containers

CloudVision

Config and activity

Consolidated view of cloud activity using cloud logs

ImageVision

Vulnerabilities

Identify vulnerabilities across the SDLC and prioritize the ones that matter using runtime context

ContainerVision

Granular visibility

Granular visibility into container, network, application, & system activity

Built on an Open-Source Security Stack

We built the Sysdig platform on an open-source stack to accelerate innovation and drive standardization.

 
Falco >
Falco

Falco is the open source standard for cloud native threat detection.

 
Open Policy Agent >
Open Policy Agent

The Open Policy Agent is an open source policy engine that unifies policy enforcement across the stack.

 
Cloud Custodian >
Cloud Custodian

Cloud Custodian is an open-source rules engine for cloud configuration management.

 
Sysdig OSS >
sysdig OSS

Sysdig OSS is the standard for cloud and container forensics.

 
Prometheus >
Prometheus

Prometheus is an open source project for monitoring cloud-native applications & Kubernetes.

 

Deep Visibility Across Your DevOps Workflow

Get unified visibility across workloads and cloud infrastructure from a single cloud security and monitoring platform. Accurately alert on threats, operational issues and compliance risks and respond using a detailed activity record. Easily plug into your existing workflows with out-of-the-box integrations.

 

Code

Infrastructure as Code Validation

  • Block risky configs
  • Auto-remediate at the source
Build

Vulnerability Management

  • Scan in CI/CD and registries
  • Block risky images
  • Prioritize vulns using runtime context
Run

Configuration and Permission Management

  • Detect cloud misconfigurations
  • Enforce least privilege access
  • Use OPA to apply consistent policies

Threat
Detection

  • Use ML and Falco for multi-layered detection (ex. threats, drift, cryptojacking, etc)
  • Implement K8s native microsegmentation
Respond

Incident
response

  • Capture detailed record for forensics
  • Remediate config issues
  • Block malicious activity

Compliance (PCI, NIST, SOC 2 and others)

Sysdig Secure

 

Start your free 30-day trial in minutes!

Complete access to all features and functions. No credit card required.

Radically Simple to Run

Check Mark

Simple, powerful instrumentation

Single agent for hosts, containers, and Kubernetes. Continuous cloud security running locally in your account.

Check Mark

SaaS delivery

No infrastructure to manage. Scale quickly as your environment grows.

Check Mark

Curated workflows

Save time with out-of-the-box dashboards and curated policies powered by the community.

Our list of integrations is always growing.

Infrastructure as Code (IaC)

CI/CD

Registries

Cloud

Containers as a Service (CaaS)

Orchestrator

SIEM

See More

We've got you covered

SaaS delivery for simplicity and scale

  • Hosted and managed by Sysdig experts
  • SOC2 Type II certified
  • Three availability zones in the U.S. and Europe
  • Available as on-premises software if required

AICPA SOC

Kubernetes Certified Service Provider

Kubernetes Certified Service Provider

 

Cloud Native Computing Foundation

Kubernetes

Cloud Native Landscape