Aqua Security Adds New Features to its Cloud Native Application Protection Platform

Aqua Security, the pure-play cloud native security provider, is adding a variety of key features to its Cloud Native Application Protection Platform (CNAPP), helping time-strapped security, DevOps, and IT practitioners to assess their cloud native security risks and respond to attacks in real-time.

Starting from the new automated, continuously updated asset inventory, practitioners can choose whether a quick assessment of workload risk is enough, or if they also want to actively protect those workloads from attacks in runtime. They can also choose whether they want to combine those controls with best practice, ‘shift-left’ policies to prevent issues from reaching production.

Altogether, the Aqua Platform detects and prioritizes risks from code to runtime, and reduces the blind spots introduced by multiple vendors and partial solutions across the application lifecycle.

“For security teams, having active, preventative shift-left and runtime controls protecting their cloud native applications is a non-negotiable requirement,” said Amir Jerbi, CTO and co-founder, Aqua Security. “Their customers and compliance regulators both require active protection across the lifecycle. But security teams are also short-staffed and in need of tools that reduce noise, allowing them to focus on the top risks first. With this release, customers get the best of both worlds: a prioritized view of risk to meet them where they are today, so that we can protect them tomorrow.”

Combined with Aqua’s recent, industry-first cloud native detection and response (CNDR) offering, the new capabilities also mean customers gain access to the broadest risk prioritization capabilities available across the full application lifecycle. The view of risk prioritization is automated and out of the box, applying to both potential risk to running workloads and actual anomalous behavior observed in runtime, according to the vendor.  

New features of Aqua’s CNAPP include:

  • Continuous Asset Discovery brings order to the wealth of cloud native artifacts and assets in minutes. The Aqua platform continuously monitors cloud accounts for new resources; once discovered they are classified and evaluated through a set of security checks.
  • Asset Inventory catalogues all K8s clusters, containers, functions, VMs, registries and other cloud resources, with key security information about vulnerabilities, misconfigurations, sensitive data and malware. The Inventory’s flexible search engine can search and filter based on asset category, risk type or severity.
  • Cloud workload scanning searches for vulnerabilities, malware, secrets and more in running workloads. Prioritized results are delivered in as little as minutes.
  • Cloud Security Insights leverages a graph database to detail a compound risk analysis highlighting the top risks relevant for any application.

For more information about this news, visit