Oracle Cloud Infrastructure Is Now supported by the Sysdig Platform

Unified container and cloud security provider Sysdig has announced that Oracle Cloud Infrastructure (OCI) is now supported by its Sysdig platform. Oracle Container Engine for Kubernetes (OKE) customers will be allowed to get a holistic view of the risk, health, compliance, and performance of cloud-native applications with Sysdig, an Oracle Partner Network (OPN) member.

The Sysdig platform is now available on the Oracle Cloud Marketplace, and it enables runtime security and host vulnerability assessment with Oracle Linux distributions in addition to OKE monitoring (UEH and RHCK).

“In cloud-native environments, tools built on open standards can help empower modern application development,” said Chris Sullivan, Vice President Strategic Partnerships at Oracle. “With the Sysdig platform on Oracle Cloud Marketplace, customers can easily reap the benefits of a proven open source-based security solution to help achieve their business goals.”

DevOps, Cloud-Native

Photo Chris Sullivan, VP Strategic Partnerships at Oracle
“With the Sysdig platform on Oracle Cloud Marketplace, customers can easily reap the benefits of a proven open source-based security solution to help achieve their business goals,” said Chris Sullivan, VP Strategic Partnerships at Oracle.

With the use of CI/CD, containers, and Kubernetes, application development is changing. Traditional security technologies can’t keep up with cloud-native architectures, DevOps and security teams are swiftly learning, stated Sysdig. Runtime security would become a priority with contemporary microservices.

According to the Sysdig 2022 Cloud-Native Security and Usage Report, 59% of businesses deploy at least once per several days. At the same time, 44% of containers have a life span of less than five minutes. Integrating vulnerability management into the software development lifecycle and having access to container data after it has been removed for threat assessment is critical with continuous deployment and a drastically reduced lifespan.

The Sysdig platform would give users the security they need to operate containers, Kubernetes, and cloud services with confidence. Sysdig would provide:

  • Host and Image Scanning – Early in the DevOps process, organizations may control security risk by identifying and correcting vulnerabilities and misconfigurations. Sysdig checks images in registries, such as Oracle Cloud Infrastructure Registry, CI/CD pipelines, and in production, on a regular basis.
  • Runtime Security – Sysdig allows businesses to identify risks in real time without sacrificing speed. Teams can immediately safeguard running workloads using out-of-the-box rules based on Falco, the open source standard for cloud-native threat detection.
  • Network Security – With visualizations and auditing of network traffic between pods, services, and applications inside OKE, Sysdig assists Oracle users in implementing a Zero Trust approach to container security.
  • Kubernetes & Container Monitoring – Automatic alarms and comprehensive health and performance statistics, including golden signals for clusters, deployments, namespaces, and workloads, are sent to cloud teams through Sysdig. Teams can manage the complexity of a containerized ecosystem with deep insight into container activities augmented with cloud and Kubernetes context.
  • Cloud Service Monitoring with Full Prometheus Compatibility – Sysdig’s native support for PromQL and Prometheus metrics allows teams to adopt the industry standard that developers choose without having to worry about scalability issues. Dashboards for cloud services, databases (including Oracle Database), and other critical components in the application environment are available out of the box.
  • Continuous Compliance – Teams may save time and money using Sysdig, as passing compliance audits can be costly. Out-of-the-box rules mapped against standard compliance frameworks such as PCI, NIST, and CIS benchmarks can be used to continually assess compliance.

Incident Response, Troubleshooting, and Forensics – To understand the consequences of security breaches, Sysdig allows teams to correlate system, user, and container activities with a forensics methodology. Oracle users may investigate events even after containers have been removed, allowing them to respond faster and recover faster.

“As customer demand for Oracle Cloud Infrastructure services expands worldwide, the need for cloud-native security and visibility tools to aid in protecting workloads is also growing,” said Phil Williams, Vice President of Corporate Development and Alliances, Sysdig. “We’re excited to work with Oracle to bring a consistent approach to security, compliance, and monitoring that will help Oracle users confidently scale services in the cloud.”

Open-Source

To solve the security concerns of modern cloud applications, Sysdig was created as an open-source corporation, and the Sysdig platform was developed on an open-source base. Sysdig’s open-source Sysdig and Falco projects were established to use deep visibility as a security basis, and they’ve now become industry standards for container and cloud threat detection and incident response. Falco, which was donated to the CNCF in 2018, is currently a hosted project at the incubation level with over 40 million downloads.