Lacework partners with AWS to augment and bring automation to the security capabilities available natively on AWS. Lacework zero-touch cloud security can be applied to (1) AWS CloudTrail events to secure AWS accounts and monitor their activity, and (2) production environments to monitor users, apps, processes, containers, VMs, and machines for security incidents.
Lacework helps organizations keep their container-based application architecture by monitoring the activity of containers deployed in the cloud, along with users, apps and processes, machines and workloads.
Having an integrated security stack can help reduce the amount of time it takes to respond to and investigate security threats. Lacework’s integration with
Lacework integrates with PagerDuty, the app used by modern ITOps and DevOps teams to monitor stacks and improve operational reliability and agility. Lacework integrates with the PagerDuty application to send incident alerts with rich contextual information, streamlining the incident management process.
Lacework partners with ReversingLabs, who deliver the world’s largest repository of deep information on both goodware and malware, to deliver continuous protection against advanced malware. Communication in your cloud with a known-bad IP address will trigger an alert, allowing you to avoid breaches.
Lacework integrates with Slack, the app preferred by modern teams for real-time messaging, archiving, and search. Lacework works with the slack application to send alerts on on pre-defined channels, helping security and Ops teams use their existing workflows to manage security incidents.
Speed of response is paramount when dealing with security and operational incidents. Lacework integrates with VictorOps to provide a unified console with one-click access to incident insights accelerating joint customers’ ability to address incidents in cloud deployments.
Lacework assists insider investigations with an integrated GEO-IP service. GEO-IP uses the incoming IP address to determine the geographic location of the user. This information can highlight unusual behavior that might indicate a breach. Location information is also useful when investigating security incidents.
Google Chrome Plugin
Using the plugin, security staff can investigate applications, users, or DNS activity and view detailed insights captured by Lacework from the application they are most comfortable with.
Lacework identifies malicious IP addresses and DNS services by integrating with a number of external threat feeds that provide reputation services. Communication with a known-bad IP address will trigger a Lacework alert. Investigators can explore more information about the suspicious IP address without leaving Polygraph.
Lacework simplifies investigations with an integrated WHO-IS service. Information about a domain name, such as assignees, IP addresses, and other information, can be seen within the Lacework Polygraph context without leaving the tool.