Sysdig Announces Service-based Access Control with Sysdig Teams

NOVEMBER 8, 2016

SHARE:

Facebook logo LinkedIn logo X (formerly Twitter) logo

Tuesday, November 8th – SAN FRANCISCO, CA Sysdig, the container-native monitoring company, today announced Teams, essential new functionality for service-based access control to container and microservice monitoring data. Service-based access control is ideal to reduce the exposure of data to those who actually need it, and also makes users more productive by focusing them on data that is relevant to them. Teams will be available both in Sysdig’s on-premise software as well as its cloud monitoring service.

“Sysdig Teams allow me to provide access to individual services of the system – as defined by our Kubernetes metadata – to people who don’t need access to the majority of our data. This helps with compliance and security, as we can ensure that engineers can only see relevant data for a limited amount of time,” said Carl Sverre, Software Architect at MemSQL.

“We built Teams to match the way organizations want to work,” said Chris Crane, VP of Product at Sysdig. “Developers want to isolate the key metrics, dashboards, and alerts that matter to their team. Ops teams are thinking about how to support self-service on a scalable, reliable platform. SecOps teams are looking to isolate data while not impeding developer productivity. Service-based access control achieves all of this at the same time.”

Sysdig teams solve for a number of complex use cases, including production environment isolation, microservice monitoring, platform-as-a-service (PaaS) enablement, restricted service isolation, and more. For more details read our blog post on teams.

Highlights
  • Set the Service filter for a team based on orchestration metadata from Kubernetes, Mesos, and Swarm, as well as other characteristics of your environment or clouds like AWS and GCP.
  • Assign users to any number of teams with fine-grained controls to ensure secure access
  • Enable “Super-user” teams that are perfect for devops admins or platform-as-a-service operators
  • Optional integration with LDAP integration for additional access control and streamlined onboarding of users.

“The move to containerized environments creates a data deluge for developers and operators. Containers create more data, and many microservices can leave all that data even more jumbled up than before,” notes Apurva Davé, VP of marketing for Sysdig. “In addition, this additional data exposure could also create more risk for a company. We have solved this problem in a way that fits naturally with the architecture as well as the workflows of modern software environments.”

Pricing & Availability

All tiers of Sysdig Cloud will come with by default with two teams. There is no change to our base pricing.

Enterprise plans can customize the number of teams that they’d like.

Sysdig Teams are currently in beta, and will be generally available later this year. If you’re a Sysdig customer and you’d like to test teams, just drop us a line and we’d be happy to add you to the beta program.


Sysdig Logo

In the cloud, every second counts. Attacks unfold in minutes and security teams must protect the business without slowing it down. Sysdig, the leader and outperformer in the “2024 GigaOm Radar for Cloud-Native Application Protection Platforms (CNAPPs),” stops cloud attacks in seconds and instantly detects changes in risk with real-time insights and open source Falco. Sysdig Sage™, the industry’s first AI cloud security analyst, uplevels human response and enables security, developers, and DevOps to work together, faster. By correlating signals across cloud workloads, identities, and services, Sysdig uncovers hidden attack paths and prioritizes real risk. From prevention to defense, Sysdig helps enterprises focus on what matters: innovation.

Sysdig. Secure Every Second.