DevOps.com

  • Latest
    • Articles
    • Features
    • Most Read
    • News
    • News Releases
  • Topics
    • AI
    • Continuous Delivery
    • Continuous Testing
    • Cloud
    • Culture
    • DevSecOps
    • Enterprise DevOps
    • Leadership Suite
    • DevOps Practice
    • ROELBOB
    • DevOps Toolbox
    • IT as Code
  • Videos/Podcasts
    • DevOps Chats
    • DevOps Unbound
  • Webinars
    • Upcoming
    • On-Demand Webinars
  • Library
  • Events
    • Upcoming Events
    • On-Demand Events
  • Sponsored Communities
    • AWS Community Hub
    • CloudBees
    • IT as Code
    • Rocket on DevOps.com
    • Traceable on DevOps.com
    • Quali on DevOps.com
  • Related Sites
    • Techstrong Group
    • Container Journal
    • Security Boulevard
    • Techstrong Research
    • DevOps Chat
    • DevOps Dozen
    • DevOps TV
    • Digital Anarchist
  • Media Kit
  • About
  • AI
  • Cloud
  • Continuous Delivery
  • Continuous Testing
  • DevSecOps
  • Leadership Suite
  • Practices
  • ROELBOB
  • Low-Code/No-Code
  • IT as Code
  • More
    • Application Performance Management/Monitoring
    • Culture
    • Enterprise DevOps

Home » News » Twistlock Releases Twistlock 2.1, Announces First-of-its-Kind Cloud Native App Firewall Enabling Organizations to Stop an Attack Before It Starts

Twistlock Releases Twistlock 2.1, Announces First-of-its-Kind Cloud Native App Firewall Enabling Organizations to Stop an Attack Before It Starts

By: Parker Yates on July 12, 2017 Leave a Comment

Latest release includes significant updates and performance improvements including Cloud Native App Firewall and new Vulnerability Explorer

Recent Posts By Parker Yates
  • Appdome Announces Teams and Enhanced Workflow for DevOps Continuous Integration Models New Features Enable Group and Collaborative Mobile Integration Efforts and App Branding
  • Gigster Raises $20 Million Series B to Power the World’s Engineering
  • Infostretch Introduces New CloudBees Enterprise Jenkins Training Services, Driving DevOps Transformation
More from Parker Yates
Related Posts
  • Twistlock Releases Twistlock 2.1, Announces First-of-its-Kind Cloud Native App Firewall Enabling Organizations to Stop an Attack Before It Starts
  • Twistlock Introduces Hybrid Cloud Service Discovery and Expands Istio, Kubernetes, and Serverless Functions Support
  • Twistlock Secures $17 Million in Funding to Support Cloud-Native Security Innovation; Global Expansion
    Related Categories
  • Latest News Releases
Show more
Show less

SAN FRANCISCO — July 11, 2017 — Twistlock, the leading provider of cloud container security solutions, today announced the availability of Twistlock 2.1. The latest release of Twistlock’s flagship product includes a first of its kind cloud native app firewall, vulnerability risk ranking that uses knowledge of an enterprise’s unique environment to prioritize what to fix first, a brand new dashboard and integrated secrets management based on Twistlock’s latest work in the Docker open source project.

DevOps Connect:DevSecOps @ RSAC 2022

Twistlock’s 2.1 release comes on the heels of continued momentum for the company. In April, Twistlock announced its $17M Series B funding round led by Polaris Partners, with participation from existing investors YL Ventures, TenEleven and Rally Ventures. Twistlock also announced significant updates to its product in the 2.0 release. Twistlock is proud to be protecting mission critical cloud native workloads at over 60 enterprise customers. Recent customer additions include a top 5 financial institution, a top 5 industrial and IoT manufacturer, the industry-leading gaming engine, additional agencies in the US defense and intelligence community, and a top 5 global coffeehouse chain.

“Twistlock 2.1 uses our deep knowledge of container threats to give organizations all the tools needed to prevent problems before they occur,” said John Morello, chief technology officer at Twistlock. “As the industry’s most comprehensive, automated and scalable container security solution, Twistlock dynamically simplifies the flow of app traffic to prevent attacks on organizations, making it an obvious choice to secure their containers against the next generation of threats.”

Cloud Native App Firewall

In 2.1, Twistlock introduces a Cloud Native App Firewall (CNAF) that combines Twistlock’s knowledge, placement and visibility, and automatically protects customers’ apps at scale, with far less manual interaction and in a completely ‘software defined’ manner. Critically, this all happens without having to change anything in an organization’s images, containers, or infrastructure. Twistlock can dynamically learn where to apply these filters, transparently filter application traffic against common attack patterns like SQL injection and cross site scripting, transparently block requests from malicious endpoints, and ensure that only safe traffic reaches an organization’s app, all without having to configure external devices or ever enter an IP address.

Vulnerability Explorer

Twistlock has always looked at vulnerability management broadly and focused on giving enterprises the tools to prevent problems before they occur. Twistlock 2.1 takes this a step further by giving customers an actionable, stack-ranked view of the most critical risks in the environment, based on the organization’s unique deployments. For example, Twistlock will prioritize vulnerabilities that impact containers exposed to the internet or running without a mandatory security profile. This visibility provides the knowledge of which risks are most important, so teams can prioritize their work to identify and remediate critical problems more rapidly.

Additional new capabilities and features available in Twistlock 2.1 include:

  • Twistlock collections: For organizations that have different teams working on many different apps sharing the same environments, collections enable the company to centrally create and manage pre-defined filters in rules and views across the product. Collections provide multi-tenancy and can be created for any arbitrary structures a company would like, such as by project, organizational hierarchy, geography or some combination thereof.
  • Compliance alerting and enforcement in Jenkins: Twistlock has long supported the ability to alert on and enforce vulnerability thresholds during the CI process via the native Jenkins plugin. In Twistlock 2.1, this CI integration is expanding to cover image compliance. A company can now use Twistlock to check, alert on, and fail builds based on compliance posture. This capability is all about the ‘shift left’ concept, helping organizations move both security and compliance further upstream in the development process.
  • Secrets manager: The new Secrets Manager in Twistlock 2.1 allows customers to integrate their secret management platforms, such as HashiCorp or CyberArk, and securely distribute secrets from those stores into specified containers. Twistlock’s secrets manager is built on the latest work Twistlock is contributing to the open source Docker project, enabling pluggable secrets stored directly in Docker Swarm.
  • Vulnerability push alerts: Enhanced capabilities in Twistlock 2.1 allow organizations to create configurable alerts, and automated processes for development teams to get push notifications about new vulnerabilities discovered in the apps they maintain.

To learn more about Twistlock 2.1, please visit our website.

Additional Resources:

  • Twistlock blog
  • Twistlock Twitter
  • Twistlock LinkedIn

About Twistlock

Twistlock is the industry’s first enterprise security suite for container security. Twistlock’s technology addresses risks on the host and within the application of the container, enabling enterprises to consistently enforce security policies, monitor and audit activity and identify and isolate threats in a container or cluster of containers. Twistlock’s mission is to provide a full, enterprise-grade security stack for containers, so organizations can confidently adopt and maximize the benefits of containers in their production environment. For more information, please visit www.twistlock.com

— Parker Yates

Filed Under: Latest News Releases

Sponsored Content
Featured eBook
The State of Open Source Vulnerabilities 2020

The State of Open Source Vulnerabilities 2020

Open source components have become an integral part of today’s software applications — it’s impossible to keep up with the hectic pace of release cycles without them. As open source usage continues to grow, so does the number of eyes focused on open source security research, resulting in a record-breaking ... Read More
« Aqua Security Joins PCI Security Standards Council to Apply the PCI Standard to Containerized Environments
Kentik Survey Identifies Key Network Challenges in the Race for Digital Transformation »

TechStrong TV – Live

Click full-screen to enable volume control
Watch latest episodes and shows

Upcoming Webinars

Continuous Deployment
Monday, July 11, 2022 - 1:00 pm EDT
Using External Tables to Store and Query Data on MinIO With SQL Server 2022
Tuesday, July 12, 2022 - 11:00 am EDT
Goldilocks and the 3 Levels of Cardinality: Getting it Just Right
Tuesday, July 12, 2022 - 1:00 pm EDT

Latest from DevOps.com

Rust in Linux 5.20 | Deepfake Hiring Fraud | IBM WFH ‘New Normal’
June 30, 2022 | Richi Jennings
Moving From Lift-and-Shift to Cloud-Native
June 30, 2022 | Alexander Gallagher
The Two Types of Code Vulnerabilities
June 30, 2022 | Casey Bisson
Common RDS Misconfigurations DevSecOps Teams Should Know
June 29, 2022 | Gad Rosenthal
Quick! Define DevSecOps: Let’s Call it Development Security
June 29, 2022 | Don Macvittie

Get The Top Stories of the Week

  • View DevOps.com Privacy Policy
  • This field is for validation purposes and should be left unchanged.

Download Free eBook

The State of Open Source Vulnerabilities 2020
The State of Open Source Vulnerabilities 2020

Most Read on DevOps.com

What Is User Acceptance Testing and Why Is it so Important?
June 27, 2022 | Ron Stefanski
Rust in Linux 5.20 | Deepfake Hiring Fraud | IBM WFH ‘New No...
June 30, 2022 | Richi Jennings
Chip-to-Cloud IoT: A Step Toward Web3
June 28, 2022 | Nahla Davies
DevOps Connect: DevSecOps — Building a Modern Cybersecurity ...
June 27, 2022 | Veronica Haggar
The Two Types of Code Vulnerabilities
June 30, 2022 | Casey Bisson

On-Demand Webinars

DevOps.com Webinar ReplaysDevOps.com Webinar Replays
  • Home
  • About DevOps.com
  • Meet our Authors
  • Write for DevOps.com
  • Media Kit
  • Sponsor Info
  • Copyright
  • TOS
  • Privacy Policy

Powered by Techstrong Group, Inc.

© 2022 ·Techstrong Group, Inc.All rights reserved.