Ability to assess risk across all 84+ AWS services, and provide a single, aggregated view into all your accounts and regions, even as new regions appear.
Continuously monitors your cloud infrastructure to automatically identify and assess security misconfigurations, so remediation is swift.
Check your entire cloud infrastructure against our 110+ security best practice checks, as well as any custom signatures you’ve defined, to determine if there are any exploitable vulnerabilities.
Update the dashboard to get the actionable view into your infrastructure risks that makes sense for you. See risks by team, region, severity, status, signature, or timeframe.
A daily email risk summary report is delivered to key stakeholders each day at 9 am (your time) to keep them informed of your security stance and helping to keep your cloud security top of mind.
From the report view, your team can see detailed information about the risk including user attribution, affected resources, teams and see all the available alert detail including a code snippet that describes the exact problem.
ESP automatically determines who, when and how risks were introduced into your environment, enabling you to identify team members who need more training, or may be posing a threat to your organization.
The risk detail also provides easy-to-follow guided remediation steps you can use to get the infrastructure back to a secure state.
See risk across all of your AWS accounts, regions, and services in one customizable view.
See your compliance stance continuously and get easy one-button compliance reports.
Agentless, API-centric software means that you can see your first dashboard in minutes.
Modify one of the standard signatures or create a new check that aligns with your specific security policy.
Out-of-the-box integration with leading DevOps tools including Sumo Logic, Splunk, Slack, Jira, PagerDuty and more. REST API integration possible to other tools.
Using AWS SNS integration, customers can enable automatic remediation before you, or malicious actors, even know there’s an issue or vulnerability.
ESP was architected to support the integration of security and compliance checks into continuous deployment processes through custom API and native integration with popular DevOps tools.