Cloud Custodian

Sysdig Secure extends Cloud Custodian to continuously manage cloud security posture

Cloud Security Posture Management

Cloud Custodian is an open-source rules engine for cloud configuration management. It is a Cloud Native Computing Foundation® (CNCF®) Sandbox project.

Sysdig Secure uses Cloud Custodian for cloud security posture management (CSPM).

Why Cloud Custodian?

Open source

Accelerate innovation by adopting an open standards-based approach to cloud security posture management (CSPM)

Configuration checks

Easily check for misconfigurations with a growing database of community-driven rules

Multi-cloud support

Consolidate policies and flag misconfigurations across AWS, GCP, and Azure

Sysdig Secure Extends Cloud Custodian

Sysdig Secure leverages Cloud Custodian under the hood for cloud security posture management (CSPM). Get out-of-the-box curated policies based on a growing database of Cloud Custodian rules to quickly assess your security posture. Use Cloud Custodian together with Falco to continuously detect misconfigurations and suspicious activity. Gain visibility into cloud security risk by assessing configurations for risk and then monitor for drift within a single console.