Search Try Aqua

Securing Cloud Native Workloads on AWS

Aqua provides the most complete security solutions to protect workloads running on Amazon ECS, EKS, AWS Fargate and AWS Lambda.

As an Advanced APN member and Container Competency technology partner, Aqua provides highly-integrated security controls for cloud native applications on AWS, supporting managed container services, such as Amazon ECS for container orchestration, Amazon EKS for Kubernetes-based deployments, AWS Fargate for on-demand container scaling, AWS Lambda for serverless functions, and Amazon ECR for storing and managing container images.


Protect workloads running on
Amazon EKS

Prevent unauthorized images from running in your EKS cluster, enforce container immutability, network segmentation and segregation of duties.

Secure Applications running on AWS Fargate containers

Embed Aqua MicroEnforcer into your containers to ensure that workloads running on AWS Fargate are only performing their intended function, detect vulnerable or compromised containers.

Extend security from Amazon ECR to Amazon ECS

Manage image vulnerabilities, ensure only trusted images can be deployed, automatically whitelist legitimate container behavior, and detect and block suspicious activities.

Protect AWS Lambda Functions

Control the risk of AWS Lambda functions by discovering over-provisioned permissions and roles, embedded credentials and keys, and vulnerabilities. Monitor functions at runtime, preventing code injection and malicious activity.

Get Aqua Cloud Native Security Platform for ECS (PAYG) from
the AWS Marketplace for Containers

The full-featured Aqua platform is available for on-demand consumption on the AWS Marketplace, providing security across the application lifecycle, from development to production.
Get it Now
How Aqua is deployed to protect AWS containers and serverless functions
Cloud Security Posture Management (CSPM)
Ensure that your AWS accounts and services are configured according to best practices, including the CIS Foundation Benchmarks for AWS. Continuously scan hundreds of settings for risks and monitor CloudTrail events for anomalies. Automatically create and retain compliance reports for PCI, HIPAA and more.
Blog
Expanding into CSPM and Deepening Cloud VM Security
Cloud VM Security and Compliance
Protect workloads running on Amazon EC2 instances and ensure they are properly hardened. Scan for vulnerabilities and malware, apply File Integrity Monitoring (FIM), check configuration against the CIS Benchmark for Linux, and monitor user access and activity. Create command-level audit trail for compliance and forensics.
Blog
Cloud VM Security
with Aqua CSP
Image Vulnerability
Scanning & Assurance
Prevent unauthorized images from running in your AWS environment. Continuously scan images stored in Amazon ECR to ensure that DevOps teams do not introduce vulnerabilities, bad configurations, or secrets into container images. Get actionable recommendations for remediation of security issues.
Case Study
Video compliance tech innovator Theta Lake ensures compliance on Amazon ECS
Blog
How to Secure Amazon ECS Workloads On Demand
Serverless Function Risk assessment
and Mitigation
Continuously scan Lambda functions in AWS accounts to ensure that developers don’t introduce vulnerabilities into function code, leave access keys in environment variables, or create overly permissive roles. Define security policies for AWS Lambda functions and alert or prevent the execution of functions that violate the policies.
Solution Sheet
Aqua Security for AWS Lambda Functions
Protect Applications in Runtime
Prevent unvetted containers from running in your Amazon ECS, EKS and Fargate environments. Automatically create security policies based on container behavior and ensure that containers only do what they are supposed to do in the application context. Detect and prevent activities that violate policy, and defend against container-specific attack vectors.
Whitepaper
Securing Containers and Serverless
on AWS
Blog
Active Workload Protection
on AWS Fargate
Container-Level RBAC
Apply highly granular access control policies into containers at runtime via integration with AWS IAM roles. Define user access privileges according to role, allowing or preventing specific Docker actions, such as view, run, stop, view logs, and more.
Blog
Kubernetes RBAC: Asking for Forgiveness or Getting Permission
Secrets Management
Leverage AWS KMS (key management store) to securely deploy secrets – such as passwords, keys and tokens – into containers at runtime. Aqua makes it easy to manage, rotate, and revoke secrets in containers with no downtime, running only in memory without persistence on disk.
With Aqua supporting our new AWS Privatelink for AWS Marketplace feature, they have leveraged our newest capability to reduce risk and increase security of data moving between Enterprises and SaaS vendors. We are thrilled to have Aqua enabling security for customers using containers on Amazon Virtual Private Cloud. ”
Dave McCann
VP of AWS Marketplace and Catalog Services, Amazon Web Services

Useful Resources

Blog
What You Need to Know About AWS Lambda Functions Risk Mitigation
 
Solution Sheet
Aqua Security for AWS
Cloud Native Workloads
Solution Sheet
Aqua Security for AWS Lambda Functions
Ready to take the plunge?
Try Aqua

    Aqua Security helps enterprises secure their cloud native applications from development to production, whether they run using containers, serverless, or virtual machines. Aqua bridges the gap between DevOps and security, promoting business agility and accelerating digital transformation.

    Aqua’s Cloud Native Security portfolio provides full visibility and security automation across the entire application lifecycle and infrastructure, using a modern zero-touch approach to detect and prevent threats while simplifying regulatory compliance. Aqua customers include some of the world’s largest financial services, software development, internet, media, hospitality and retail companies, with implementations across the globe spanning a broad range of cloud providers and on-premise technologies.

Privacy Policy | Terms of Use
Copyright © 2020 Aqua Security Software Ltd.