SAN JOSE, Calif. — Lacework will introduce active host vulnerability monitoring, pre-flight checks, and CI/CD automation workflows to its comprehensive SaaS security offering. Customers scaling services in the cloud will now have the telemetry to know what to fix in just three clicks without having to reference multiple tools as they safely build and innovate at speed.

Lacework was built from the ground up for detecting and observing security threats in the cloud, including serverless, containers, and Kubernetes workloads, and streamlines security tasks for software teams building on Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP).

The addition of host vulnerability monitoring addresses the security challenges of protecting modern, ephemeral container and host architectures and workflows. It consolidates multiple tools and eases the process of fixing vulnerabilities before they go into production with preflight host vulnerability scans, active vulnerability identification, and enhanced CI/CD tooling for DevOps workflows. Lacework’s intrusion detection agent helps DevOps stay focused on innovation by alerting teams to only those vulnerabilities that carry a viable potential risk. 

“Incumbent security offerings focus on vulnerabilities, but they do not capture or decipher the breadth of data at scale required to know whether you are truly vulnerable or not,” said Dan Hubbard, CEO of Lacework. ”Efficacy is crucial because not all vulnerabilities render you vulnerable. For example, one of our customers believed they had 51,000 vulnerable hosts but were able to narrow that down to 78 active machine images with Lacework. The power of our SaaS cloud security platform is that we can add new capabilities quickly.”