Sysdig this week released version 2.0 of its cloud-native security and visibility platform. The update unifies the aspects of its platform for a more complete view of the health, performance, and risk levels of an enterprises’ cloud-native applications.
“It starts with a simple fact — data is data. Why silo data as ‘security data’ or ‘performance data’ when you can bring all of it to bear on any given problem?” said Suresh Vasudevan, CEO Of Sysdig. “We knew that if we could unlock all of this data sitting in different silos, trapped in different tools, we could allow these incredibly smart DevOps and DevSecOps teams to be 10 times more effective.”
With the upgrade Sysdig claims customers can migrate to cloud native three times faster, increase DevOps efficiency by 67%, and improve risk mitigation by up to 95%.
This version is an evolution of Sysdig Monitor platform, launched in 2015, and Sysdig Secure, launched in 2017. Sysdig has added an overview application which, Vasudevan says, provides contextual information so that end-users can obtain the information required to get a full picture of their cloud-native applications. This includes performance metrics, compliance dashboards, and security forensics.
The unified platform delivers container security, monitoring, and forensics in a microservices-friendly architecture.
“We focus on all three stages of the container lifecycle — build, run, and respond — and we give enterprises the workflows on top of the data to solve the problems unique to each stage from development and production to remediation,” he said.
The Complexity of Cloud-Native
Consolidating data for security and monitoring can help with some of the greater complexities of cloud-native applications. This way teams within enterprises can use the same data, just sliced specifically for their needs.
“As enterprises move to cloud-native architectures, they are thinking not only ‘how do I build better software’ but also thinking ‘how do I operate better software?’ Why make the same mistakes of last generation again by buying and operating niche container monitoring tools and isolated container security tools?” said Vasudevan. “Enterprises are smarter than that — they know they can solve these operational issues in a more holistic way.”
This addresses a key complexity with cloud-native architecture, he says: enterprises lose visibility into their clouds, containers, and applications. Traditional tools cannot handle the massive amounts of data to understand performance or security, and they can’t access the metadata required to relate containers to one another. Additionally, the “ephemeral nature of containers” makes it hard to understand the environment and thus secure it.
Sysdig’s latest approach solves all three of these dilemmas. “We provide DevOps, security, and services owners access to the richest, cleanest data, enabling them to slice it how they want to in order to secure software, do faster problem triage, reduce alert fatigue, and provide massive operational efficiencies,” he said.
This update includes new features and tools that enable instrumenting, collecting, and storing the granular data required to secure, monitor, and manage containers and microservices. This includes a single agent to collect data from hosts, containers, orchestrators, networks, and cloud files; the new data platform; and a multi-cloud design so it can run anywhere.
Additionally in this release Sysdig added new Kubernetes-related monitoring and security features. According to Vasudevan, Sysdig has supported the Kubernetes ecosystem since 2015, but in this release updated to make “Kubernetes even friendlier for the enterprise.”
These updates included Kubernetes-specific dashboards to better monitor and receive alerts on these environments, support for CRI-O and containerd runtimes, a topological view for Kubernetes orchestration, the ability to leverage Kubernetes metadata, and downstream integration for security information and event management tools (SIEM) like Splunk.