Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Great addition to security tooling portfolio giving runtime threat and vulnerability insights
What do you like best about the product?
The runtime scanning of workloads combined with threat intelligence/insights makes prioritisation easier
What do you dislike about the product?
I've been advised it's in the roadmap but the ability to ignore or whitelist vulnerabilities
What problems is the product solving and how is that benefiting you?
Visibility into threats of runtime workloads was the main driver for looking into a tool like Sysdig Secure
Recommendations to others considering the product:
Great for customers who are cloud native and run Kubernetes workloads
- Leave a Comment |
- Mark review as helpful
Solid product and professional service
What do you like best about the product?
Sysdig secure provides well-rounded vulnerablity management and in-depth insights for security personal, software developer, adminstrator and managers to grash secure posture at all times.
What do you dislike about the product?
Not really found any. It does provides what we're look for and fully covers entire SDLC , range from software development pipeline on developers side, to operating envionments.
What problems is the product solving and how is that benefiting you?
It scans and reports vulnerabilities in application software, OS, containers and linux hosts. With insights provided, I obtain a clear view of securtiy posture as needed.
Customizable Security That Keeps Getting Better
What do you like best about the product?
We started our journey with Sysdig because of the flexibility of the underlying Falco rules engine. What has kept us with Sysdig is that flexibility along with continued feature additions that continually add greater value. We started with Container Security and now have CSPM, deep vulnerability information and the beginnings of infrastructure-as-code policy enforcement and drift control. In addition, their customer service is stellar. They keep us up-to-date as a customer with their roadmap and take our feedback seriously leading to great product rollouts.
What do you dislike about the product?
As with all alerting systems it can be difficult to get signal from the noise. The continued feature additions, especially rule exceptions and the automated tuner have greatly reduced the cycle time required to bring down the noise. I appreciate the focus by the Sysdig team in this area. Like all tools, it's an ongoing process to keep alerting trimmed to what's important.
What problems is the product solving and how is that benefiting you?
Sysdig Secure gives us amazing visibility and security awareness for our container workloads. We are able to understand not only how are containers are behaving but what seems to be out of the ordinary and how to take action to get more information or kill the workload. We save massive amounts of time researching whether our workloads are impacted by recently released critical CVE's b/c we can quickly run reports that tell us the impacted workloads and help us prioritize getting them patched. Sysdig is also constantly updating the rules library allowing us to take advantage of their threat research rather than having to create our own rules to address threats.
Recommendations to others considering the product:
Advice for those looking at Sysdig Secure is to consider how well you understand the rules and policies you're implementing and how easy those will be to manage in the future. That is an inherent part of Sysdig Secure and what makes the platform usable and customizable. Other platforms we researched made this much less straightforward and customization was lacking. Definitely take a look at the Falco opensource engine and even take it for a test drive to see if you like the way it works. Sysdig Secure is a step up from Falco in features and functionality but the roots are the same which is what makes it great.
great tool to secure you AKS workloads
What do you like best about the product?
Proactively scan your images and its flexible policy enforcement. Also, The deep visibility and assurance that using syscall monitoring gives us in our runtime environment for security issues. Ability to forward security events to Microsoft Sentinel with seamless integration. Out Of Box runtime security rules and policies covering common security events.
Deep understanding of command execution within your containers providing forensic like events
Azure DevOps extension to inject a task into the pipeline for image scanning during you CI/CD
Deep understanding of command execution within your containers providing forensic like events
Azure DevOps extension to inject a task into the pipeline for image scanning during you CI/CD
What do you dislike about the product?
It generates a lot of events OOB so you have to invest some time fine-tuning your policies to remove unnecessary events. Service Account token generation is not currently available. We hope to see seamless integration with the Azure platform in regards to Regulatory Compliance as it is already available for AWS
What problems is the product solving and how is that benefiting you?
We used to have issues with another image scanning engine as it had inflexible policies, this caused issues with our development teams. The Sysdig image scanning policies are much more flexible, allowing us to strike a better balance between security and usability.
Before Sysdig we had no visibility into what was being executed in our AKS environment; we now have deep visibility into all actions taken regardless of whether they are in containers or hosts.
Before Sysdig we had no visibility into what was being executed in our AKS environment; we now have deep visibility into all actions taken regardless of whether they are in containers or hosts.
Recommendations to others considering the product:
Sysdig it's a SaaS Product that provides easy setup and you can start with a free trial to check its benefits.
Great features, awesome company
What do you like best about the product?
The combination of container insight, container security policies, and container scanning with more and more robust reporting to compliance standards.
What do you dislike about the product?
The complexity of the underlying application is very large, requiring a lot of components. There's a SaaS option which alleviates that, but it doesn't fall under many compliance scopes yet.
What problems is the product solving and how is that benefiting you?
Our problems are a few-fold, but primarily revolve around container security policy and scanning, especially compliance-based scans. The compliance-based scan results are an active work item with the very-responsive company and have come a long way in a short amount of time. Otherwise we love the visibility we get into our container infrastructure.
And intuitive operations tool that supports multiple teams
What do you like best about the product?
The ease of deployment, multi-team management, and combination of ops and security visibility is powerful. The dynamic dashboard creation and existing templates help end-users get up and running quickly.The prometheus integration is also really useful but still in the early days for some of our intended uses.
What do you dislike about the product?
A swagger API should be more accessible and the separation of "host" and "container" resources needs to be blended in a simpler way.
Other vendors are combing log and metric management, which while difficult, can be useful for application teams.
Additional integrations with infrastructure components would be helpful, and more thorough documentation on how configure prometheus monitoring would be an asset to users.
Other vendors are combing log and metric management, which while difficult, can be useful for application teams.
Additional integrations with infrastructure components would be helpful, and more thorough documentation on how configure prometheus monitoring would be an asset to users.
What problems is the product solving and how is that benefiting you?
Multi-cluster operational alerting with the ability to provide teams access to see their own scoped applications. All within the same solution.
We also provide runtime protection and vulnerability scanning within the solution.
We also provide runtime protection and vulnerability scanning within the solution.
Recommendations to others considering the product:
Spend time with your account team to describe the key items that you want to monitor and have them walk you through the best approach, including sharing of dashboards, etc with other teams. They often have great recommendations that can save some time.
showing 91 - 96