Clarizen is a collaborative work management solution designed for people who value their time and for organizations that value cross-company engagement. With Clarizen, organizations can work the way they want to work and have real time-visibility into all their workstreams. This keeps teams focused on the things that matter, delivers results faster, and helps them exceed their company goals and customers’ expectations. The company has thousands of customers across the globe and is widely regarded as the leader in collaborative project management.
In addition to its flagship SaaS solution, Clarizen One, the company has developed Clarizen Go, a more agile, lightweight SaaS solution for collaborative task management.
Clarizen Go was developed using a cloud-native approach, using containers. It is run and orchestrated using Amazon’s Elastic Kubernetes Service (EKS) and keeps its container images on Amazon’s Elastic Container Registry (ECR). Its agile development pipeline is managed using Bitbucket and Jenkins for continuous integration.
Since Clarizen Go handles sensitive customer data, a cardinal concern was adhering to compliance requirements such as SOC2 and GDPR and having best-in-class visibility and security controls. Due to the agile nature of development and wide usage patterns, the Clarizen team wanted to secure both the development pipeline as well as the runtime environment in AWS, in order to be able to detect issues as early as possible, and mitigate them before they present risks into the production environment.
“Having granular visibility and observability of the entire application lifecycle from a security and compliance perspective was key,” says Yuri Livshitz, Cloud Security Architect at Clarizen. “We wanted to be able to manage vulnerabilities and other issues in the pipeline as they happen.”
Clarizen canvassed the market for the leading cloud-native security solutions and chose Aqua for its fit with the team’s requirements, its ability to secure the entire lifecycle from development to production, its advanced security feature set, and its broad platform support.
“Our main security objective has been preventing data breaches. So we needed to tightly control the environment, focusing on preventive measures and least privilege enforcement. This in turn allows us to easily detect unauthorized access or activity.”
Using Aqua, Clarizen was quickly able protect Clarizen Go according to best practices and establish security controls for the entire stack:
“One of the things we liked most about Aqua was its broad platform support, which enables us to future-proof our investment and give us flexibility in choosing how and where we run our applications moving forward.” – Yuri Livshitz, Cloud Security Architect at Clarizen
Clarizen runs the Clarizen Go application on Amazon EKS, using Amazon ECR to store and manage container images, and leveraging ancillary services such as AWS S3, AWS CloudWatch, and AWS ALB for load balancing.
By using the Aqua platform, Clarizen secures its container-based development pipeline, leveraging automation to reap the benefits of agile development without introducing unnecessary risk. Additionally, Clarizen has gained visibility into its Kubernetes-based production stack, keeping tabs on security issues as they emerge: