Sysdig Announces Service-based Access Control with Sysdig Teams

NOVEMBER 8, 2016

Tuesday, November 8th – SAN FRANCISCO, CA Sysdig, the container-native monitoring company, today announced Teams, essential new functionality for service-based access control to container and microservice monitoring data. Service-based access control is ideal to reduce the exposure of data to those who actually need it, and also makes users more productive by focusing them on data that is relevant to them. Teams will be available both in Sysdig’s on-premise software as well as its cloud monitoring service.

“Sysdig Teams allow me to provide access to individual services of the system – as defined by our Kubernetes metadata – to people who don’t need access to the majority of our data. This helps with compliance and security, as we can ensure that engineers can only see relevant data for a limited amount of time,” said Carl Sverre, Software Architect at MemSQL.

“We built Teams to match the way organizations want to work,” said Chris Crane, VP of Product at Sysdig. “Developers want to isolate the key metrics, dashboards, and alerts that matter to their team. Ops teams are thinking about how to support self-service on a scalable, reliable platform. SecOps teams are looking to isolate data while not impeding developer productivity. Service-based access control achieves all of this at the same time.”

Sysdig teams solve for a number of complex use cases, including production environment isolation, microservice monitoring, platform-as-a-service (PaaS) enablement, restricted service isolation, and more. For more details read our blog post on teams.

  • Set the Service filter for a team based on orchestration metadata from Kubernetes, Mesos, and Swarm, as well as other characteristics of your environment or clouds like AWS and GCP.
  • Assign users to any number of teams with fine-grained controls to ensure secure access
  • Enable “Super-user” teams that are perfect for devops admins or platform-as-a-service operators
  • Optional integration with LDAP integration for additional access control and streamlined onboarding of users.

“The move to containerized environments creates a data deluge for developers and operators. Containers create more data, and many microservices can leave all that data even more jumbled up than before,” notes Apurva Davé, VP of marketing for Sysdig. “In addition, this additional data exposure could also create more risk for a company. We have solved this problem in a way that fits naturally with the architecture as well as the workflows of modern software environments.”

Pricing & Availability

All tiers of Sysdig Cloud will come with by default with two teams. There is no change to our base pricing.

Enterprise plans can customize the number of teams that they’d like.

Sysdig Teams are currently in beta, and will be generally available later this year. If you’re a Sysdig customer and you’d like to test teams, just drop us a line and we’d be happy to add you to the beta program.

Sysdig Logo

Sysdig is driving the standard for cloud and container security. The company pioneered cloud-native runtime threat detection and response by creating Falco and Sysdig Open Source as open source standards and key building blocks of the Sysdig platform. With the platform, teams can find and prioritize software vulnerabilities, detect and respond to threats, and manage cloud configurations, permissions, and compliance. From containers and Kubernetes to cloud services, teams get a single view of risk from source to run, with no blind spots, no guesswork, no wasted time. The largest and most innovative companies around the world rely on Sysdig.