Date: 09/05/2024

Vendor: Aqua Security

Technology/Topic: DevSecOps / Cloud Native Application Security (CNAPP)

URL: https://www.aquasec.com/solutions/federal

TEM Video Recording (milTube)

TEM Slide Deck

______________________________________________

Welcome to the Technical Exchange Meeting (TEM)!

Aqua secures cloud-native workloads, including containerized, serverless, and VM-based environments, by implementing robust Zero Trust policies through its suite of tools. This ensures continuous verification of all access requests and enforces strict runtime security controls to protect against unauthorized access and potential breaches.

Traditional security models often rely on perimeter-based defenses, which trust devices and users within the network perimeter. This approach is increasingly ineffective against sophisticated cyber threats. Some organizations have started adopting Zero Trust principles, but integrating and operationalizing these principles within containerized environments remains challenging.

Aqua’s approach leverages its advanced capabilities to operationalize Zero Trust within cloud-native environments effectively. Key innovations include:

— Aqua is FedRAMP High Authorized

— Granular Access Controls: Implementing strict access policies at the container level to ensure the principle of least privilege.

— Continuous Verification: Utilizing Aqua’s runtime protection and monitoring to continuously verify the security status of workloads and protect against zero-day attacks.

— eBPF Integration: Enhancing real-time threat detection and response using eBPF for deep visibility and control at the kernel level.

— Immutable Security Stance: Treating container environments as immutable, preventing unauthorized changes and preserving workload integrity.    

______________________________________________

To join the DISA TEM mailing list, please contact: disa.tem@mail.mil

______________________________________________

Disclaimer:

— TEMs do not serve as a marketing venue or request for proposal actions.

— TEMs shall not be interpreted as a commitment by the Government to issue a solicitation or ultimately award a contract.

— TEMs do not serve as an endorsement of any presented technologies or capabilities

— Presentations will not be considered as proposals nor will any awards be made as a result of a TEM session.

— TEMs are public open forums – no proprietary or sensitive information should be presented during TEM sessions. Only publicly facing content is permissible in DISA TEM sessions.

The owner of this website has made a commitment to accessibility and inclusion, please report any problems that you encounter using the contact form on this website. This site uses the WP ADA Compliance Check plugin to enhance accessibility.