Get reports mapped to and certified by the Center for Internet Security (CIS) Foundation Benchmark tests for public clouds, to evaluate the security of your cloud accounts and ensure compliance.
Select configurations to be automatically fixed if they drifted out of policy by granting specific and temporary authenticated access for each selected check.
Check Terraform and AWS CloudFormation templates for security issues before your applications are deployed. Applying “shift left” security reduces your risk and security incidents in production.
Use ready-made scans and reports for PCI-DSS, HIPAA, Well-Architected Framework, GDPR, and for custom compliance requirements. Your reports can be by region, cloud provider service category (e.g., AWS EC2, AWS S3), severity level, etc. Export as CSV or PDF. You can also build your own customized alerts for specific types of checks and conditions.
Gain visibility into all your cloud control-plane API calls in real time. Analyze events for security-sensitive changes or potentially malicious activity, based on out-of-the-box rules created by security experts, with no additional configuration required.
Support for multiple users and teams across hundreds of cloud accounts with SSO using SAML 2.0. Aqua CSPM integrates with SIEM and collaboration tools, including Splunk, Slack, OpsGenie, PagerDuty, Microsoft Teams, and more. Fully documented RESTful APIs make it easy for you to create additional integrations and automate workflows.
At its core, Aqua’s CSPM offering is based on our CloudSploit open source project. Open source provides full transparency into why, what, and how your cloud accounts are tested. With its extendable plugin architecture, you can also develop new or update existing plugins to address any emerging or customer-specific requirements.