Sysdig Announces Service-based Access Control with Sysdig Teams

NOVEMBER 8, 2016


Tuesday, November 8th – SAN FRANCISCO, CA Sysdig, the container-native monitoring company, today announced Teams, essential new functionality for service-based access control to container and microservice monitoring data. Service-based access control is ideal to reduce the exposure of data to those who actually need it, and also makes users more productive by focusing them on data that is relevant to them. Teams will be available both in Sysdig’s on-premise software as well as its cloud monitoring service.

“Sysdig Teams allow me to provide access to individual services of the system – as defined by our Kubernetes metadata – to people who don’t need access to the majority of our data. This helps with compliance and security, as we can ensure that engineers can only see relevant data for a limited amount of time,” said Carl Sverre, Software Architect at MemSQL.

“We built Teams to match the way organizations want to work,” said Chris Crane, VP of Product at Sysdig. “Developers want to isolate the key metrics, dashboards, and alerts that matter to their team. Ops teams are thinking about how to support self-service on a scalable, reliable platform. SecOps teams are looking to isolate data while not impeding developer productivity. Service-based access control achieves all of this at the same time.”

Sysdig teams solve for a number of complex use cases, including production environment isolation, microservice monitoring, platform-as-a-service (PaaS) enablement, restricted service isolation, and more. For more details read our blog post on teams.

  • Set the Service filter for a team based on orchestration metadata from Kubernetes, Mesos, and Swarm, as well as other characteristics of your environment or clouds like AWS and GCP.
  • Assign users to any number of teams with fine-grained controls to ensure secure access
  • Enable “Super-user” teams that are perfect for devops admins or platform-as-a-service operators
  • Optional integration with LDAP integration for additional access control and streamlined onboarding of users.

“The move to containerized environments creates a data deluge for developers and operators. Containers create more data, and many microservices can leave all that data even more jumbled up than before,” notes Apurva Davé, VP of marketing for Sysdig. “In addition, this additional data exposure could also create more risk for a company. We have solved this problem in a way that fits naturally with the architecture as well as the workflows of modern software environments.”

Pricing & Availability

All tiers of Sysdig Cloud will come with by default with two teams. There is no change to our base pricing.

Enterprise plans can customize the number of teams that they’d like.

Sysdig Teams are currently in beta, and will be generally available later this year. If you’re a Sysdig customer and you’d like to test teams, just drop us a line and we’d be happy to add you to the beta program.

Sysdig Logo

About Sysdig In the cloud, every second counts. Attacks move at warp speed, and security teams must protect the business without slowing it down. Sysdig stops cloud attacks in real time, instantly detecting changes in risk with runtime insights and open source Falco. Sysdig, rated #1 for CSPM in the Gartner Peer Insights “Voice of a Customer” report, correlates signals across cloud workloads, identities, and services to uncover hidden attack paths and prioritize real risk. From prevention to defense, Sysdig helps enterprises focus on what matters: innovation.

Sysdig. Secure Every Second.