Cloud cybersecurity provider Sweet Security has launched a new runtime security platform, dubbed Sweet, to enable security teams to detect and respond to cloud-based attacks in runtime.
The platform deploys sensors in the runtime environment to provide CISOs and security teams with cloud-native cluster visibility.
“Like legacy detection and responses solutions, we have sensors deployed in the target environment,” said Eyal Fisher, chief product officer at Sweet Security. “But our sensor is built specifically for cloud workloads, native apps running on clouds. The sensors send us telemetry from the runtime environments and help us identify behavior deviation.”
Sweet runs a SaaS model and will be offered as a tiered subscription, with the price depending on the number of features a customer opts for.
Sweet deploys runtime sensors
Sweet deploys runtime sensors that screen application data and business logic, and process them through an in-house framework to profile workload behavior anomalies and contextualize them with traditional tactics, techniques, and procedures (TTPs).
“Our runtime sensors bring back to us the telemetry from the target environment including workloads, logs, and APIs, and help us build a baseline behavior for the applications running on the cloud,” Fisher said. “So now, when there is a deviation, we know that might be an attack and conduct further investigation.”