Sysdig Releases ToDo and Remediation Guru
September 20, 2022

Sysdig announced ToDo and Remediation Guru.

ToDo is a cloud security posture management (CSPM) offering that aggregates security findings by root cause and prioritizes remediation based on impact. ToDo saves time during investigations and Remediation Guru allows security and DevOps teams to fix issues in seconds with just a few clicks.

With Sysdig, security teams can rapidly find, prioritize, and remediate security issues. ToDo aggregates risks that have the same root cause and provides opinionated prioritization that reduces time spent on investigation. However, teams not only need help identifying the risks and focusing their attention on what matters, but they also need assistance implementing the fixes. Remediation Guru automatically generates the suggested change to IaC templates that can be applied with a single click so teams can get back to revenue-generating work. Because Sysdig has a shared policy model, teams can efficiently and consistently enforce policy across multiple cloud and Kubernetes environments.

Key Benefits:

- Manage cloud and Kubernetes inventory with a single view: Teams gain visibility into cloud assets across hybrid- and multi-cloud environments.

- Prioritize what matters with ToDo: ToDo prioritizes actions that remediate the greatest number of issues by consolidating based on root cause and impact.

- Save time using Remediation Guru to fix configuration risks: Remediation Guru enables teams to fix at the source by approving automatically generated pull requests that map misconfigurations in production to IaC manifests.

- Adopt a shared policy model leveraging OPA: Sysdig helps teams apply security policies using Open Policy Agent (OPA) policy-as-code once across multiple cloud and Kubernetes environments. Teams get a unified view of security requirements from source to production, and can easily create custom OPA-based policies with a few clicks.

“It is the worst kept secret in cloud that security tools often overwhelm teams with useless alerts that are not actionable,” said Omer Azaria, VP Security Engineering at Sysdig. “Customers cannot wait to get their hands on ToDo prioritization and Remediation Guru, tools that group issues and guide you to take the most impactful actions to improve security posture. For example, 'making this change to your IAC manifest file will cause 100 resources to pass a failing compliance control.'"

Share this

Industry News

September 29, 2022

CloudBees announced the acquisition of ReleaseIQ to expand the company’s DevSecOps capabilities, empowering customers with a low-code, end-to-end release orchestration and visibility solution.

September 29, 2022

SmartBear continues expanding its commitment to the Atlassian Marketplace, adding Bugsnag for Jira and SwaggerHub Integration for Confluence.

Bugsnag developers monitoring application stability and documenting in Jira no longer need to interrupt their workflow to access the app. Developers working in SwaggerHub can use the macro to push API definitions and changes directly to other teams and business stakeholders that work within Confluence. By increasing the presence of SmartBear tools on the Atlassian Marketplace, the company continues meeting developers where they are.

September 29, 2022

Ox Security exited stealth today with $34M in funding led by Evolution Equity Partners, Team8, and M12, Microsoft's venture fund, with participation from Rain Capital.

September 29, 2022

cnvrg.io announced that the new Intel Developer Cloud is now available via the cnvrg.io Metacloud platform, providing a fully integrated software and hardware solution.

September 28, 2022

Kong introduced a number of new performance, security and extensibility features across its entire product portfolio, including major new releases of Kong Gateway, Kong Konnect, Kong Mesh, Kong Insomnia and Kong Ingress Controller, as well as new projects from the Kong Incubator.

September 28, 2022

BroadPeak Partners announced the availability of the new K3 API Connector.

September 28, 2022

Aqua Security announced a new end-to-end software supply chain security solution.

September 27, 2022

DevOps Institute will host SKILup Festival in Singapore on November 15, 2022.

September 27, 2022

Delinea announced the latest release of DevOps Secrets Vault, its high-speed vault for DevOps and DevSecOps teams.

September 27, 2022

The Apptainer community announced version 1.1.0 of the popular container system for secure, high-performance computing (HPC). Improvements in the new version provide a smaller attack surface for production deployments while offering features that improve and simplify the user experience.

September 26, 2022

Secure Code Warrior unveiled Coding Labs, a new mechanism that allows developers to more easily move from learning to applying secure coding knowledge, leading to fewer vulnerabilities in code.

September 26, 2022

ActiveState announced the availability of the ActiveState Artifact Repository.

September 26, 2022

Split Software announced the availability of its Feature Data Platform in the Microsoft Azure Marketplace.

September 22, 2022

Katalon announced the launch of the Katalon Platform, a modern and comprehensive software quality management platform that enables teams of any size to easily and efficiently test, launch, and optimize apps, products, and software.

September 22, 2022

StackHawk announced its Deeper API Security Test Coverage release.