WALTHAM, Mass., May 7, 2024 – Dynatrace (NYSE: DT), the leader in unified observability and security, today announced it is enhancing its platform with new Kubernetes Security Posture Management (KSPM) capabilities for observability-driven security, configuration, and compliance monitoring. This announcement follows the rapid integration of Runecast technology into the Dynatrace® platform following the company’s successful acquisition earlier this year. The new KSPM offering builds on Dynatrace’s existing security protection capabilities, including Runtime Vulnerability Analytics (RVA) and Runtime Application Protection (RAP), strengthening cloud-native application protection in the Dynatrace platform. These combined capabilities provide DevSecOps, security, platform engineering, and SRE teams, who are all responsible for ensuring the security of Kubernetes environments, with an innovative solution for security posture and compliance.
“As workloads become more dynamic, integrating KSPM into the deployment lifecycle is essential for the security of Kubernetes environments and adherence to best practices and standards,” says KellyAnn Fitzpatrick, Senior Analyst with RedMonk. “Through a combination of real-time vulnerability assessments and contextual security insights, Dynatrace’s new KSPM solution aims to empower teams to proactively address risks and achieve complete visibility into their security posture, compliance status, and attack vectors. Such solutions can enable teams to confidently accelerate their digital transformation, knowing that their cloud-native environment is protected.”
Dynatrace’s new KSPM solution, combined with the platform’s existing RVA and RAP capabilities, enables teams to instantly detect risks in their Kubernetes deployments and automatically prioritize remediation based on risk exposure. To achieve this at scale, Dynatrace uses Davis® hypermodal AI, which combines predictive and causal AI techniques for precise answers and automation and generative AI for increased productivity. As a result, teams can gain comprehensive insights into cloud-native applications across code, libraries, language runtime, and container infrastructure. This helps them strengthen the security posture of their Kubernetes deployments, while also complying with regulatory frameworks and industry best practices, including those defined by the Center for Internet Security (CIS).
“While most teams rely on agentless workload scanning to enable KSPM, this snapshot approach is incapable of providing real-time insights and often causes a frequency of excessive alerts, without runtime context, that waste time and make remediation efforts more confusing,” said Bernd Greifeneder, CTO at Dynatrace. “As the attack surface of cloud applications continues to increase and attackers are targeting the misconfiguration of cloud infrastructure, APIs, and the software supply chain itself, organizations must evolve their solutions and processes to ensure their cloud technologies, including Kubernetes, are constantly protected against the latest risks and empower teams to operate with best practices. Building on the Dynatrace platform’s existing RVA and RAP capabilities, Dynatrace is delivering an innovative approach to KSPM that we believe sets us apart, providing teams with real-time insights, automated compliance, and actionable advice that free up resources and reduce exposure risk.”
Dynatrace Kubernetes Security Posture Management is expected to be generally available in the second half of 2024.
Cautionary Language Concerning Forward-Looking Statements
This press release includes certain “forward-looking statements” within the meaning of the Private Securities Litigation Reform Act of 1995, including statements regarding the capabilities of Dynatrace Kubernetes Security Posture Management, and the expected benefits to organizations from using Dynatrace Kubernetes Security Posture Management. These forward-looking statements include all statements that are not historical facts and statements identified by words such as “will,” “expects,” “anticipates,” “intends,” “plans,” “believes,” “seeks,” “estimates,” and words of similar meaning. These forward-looking statements reflect our current views about our plans, intentions, expectations, strategies, and prospects, which are based on the information currently available to us and on assumptions we have made. Although we believe that our plans, intentions, expectations, strategies, and prospects as reflected in or suggested by those forward-looking statements are reasonable, we can give no assurance that the plans, intentions, expectations, or strategies will be attained or achieved. Actual results may differ materially from those described in the forward-looking statements and will be affected by a variety of risks and factors that are beyond our control, including the risks set forth under the caption “Risk Factors” in our Quarterly Report on Form 10-Q filed on February 8, 2024, and our other SEC filings. We assume no obligation to update any forward-looking statements contained in this document as a result of new information, future events, or otherwise.