Here’s some very good news from Datadog…
If you remember it’s been only 10 months since Datadog acquired Sqreen and they have released the public beta of Datadog Application Security, It’s a new offering within their Cloud Security Platform that empowers security, operations and development teams to build and run secure applications together, all from within the same platform.
“…Securing modern-day production systems is expensive and complex. Teams often need to implement extensive measures, such as secure coding practices, security testing, periodic vulnerability scans and penetration tests, and protections at the network edge. Even when organizations have the resources to deploy these solutions, they still struggle to keep pace with software teams, especially as they accelerate their release cycles and migrate to distributed systems and microservices. Unscalable, piecemeal approaches to application security have fostered insecure applications that offer an easy target for attackers, putting customer data and company infrastructure at risk…”
Datadog Application Security will help by,
# Getting alerted when threats target your production services business logic.
# Assess the impact of attacks and get code-level insights for remediation.
# Reconstruct the attack vector across the stack with the Cloud Security Platform.
The product offers coverage for vulnerabilities like SSRF, cross-site scripting (XSS), SQL injections (SQLi) and some more and get visibility into most of the OWASP Top 10 attacks. Just for your information, the OWASP Top 10 is a standard awareness document for developers and web application security. It represents a broad consensus about the most critical security risks to web applications.
A couple of years back Datadog had released Datadog Cloud SIEM, which provides runtime security visibility and detection capabilities.
As you can see I’m thrilled with this integration happening in just 10 months!!!
ronjonb ( @ronjonbsaas on twitter)
Early investor and a technical expert on how Datadog, Zscaler, Crowdstrike and Snowflake works.