Solutions Hub
Twistlock for Tanzu

Complete Lifecycle Security for Cloud Native Apps

Compatible with TAS, TKGI, Standalone TKGI

Compatible with TAS
Can be consumed by apps on TAS

Compatible with TKG
Can be consumed by apps on TKG

Compatible with TKGI
Can be consumed by apps on TKGI

Compatible with Standalone TKGI
Runs on TKGI with no dependency on TAS

Enterprises using Tanzu to build, manage, and run their cloud native apps leverage Twistlock to provide security for their applications. Twistlock ensures that application or container artifacts deployed to Tanzu Application Service (TAS) are implementing compliance policies and are free of vulnerabilities Deployments on TKGI benefit from full runtime defense and cloud native firewalling.

Automated, Continuous Vulnerability Scanning for Tanzu

Twistlock is easily deployed with Tanzu to identify and block vulnerabilities in applications, container artifacts, and Blobstores. DevOps teams can integrate Twistlock directly into any CI/CD process to provide automated visibility into all your standard workflows. Advanced threat intelligence and machine learning capabilities deliver automated policy creation, runtime protection, and firewalling. As soon as code is built and deployed, Twistlock automatically acts based on your compliance state.

Support for All Your Application Frameworks

The Twistlock Intelligence Stream sources and aggregates vulnerability information directly from 30+ upstream projects, commercial sources, and proprietary research from Twistlock Labs. Twistlock has the most complete data to support all your application frameworks like Java, Ruby, Python, and Node.js for both Windows and Linux container artifacts and images. From CI/CD, to SIEM, to access control and secrets management, Twistlock integrates with the tools your developers and security teams already use.

Runtime Security for TKGI

From network and application firewalls, to container runtime defense, to host protection, Twistlock defends your applications running on TKGI against attacks and anomalous behavior. Twistlock runs natively on TKGI to provide automatically-created runtime defense for every pod along with microservices-aware layer 3 and layer 7 firewalls.

Twistlock Overview

Twistlock is a cloud native cybersecurity platform for modern applications. From precise, actionable vulnerability management to automatically-deployed runtime protection and firewalls, Twistlock protects applications across the development lifecycle and into production. Purpose-built for containers, serverless, and other leading technologies—Twistlock gives developers the speed they want, and CISOs the controls they need.

More about Twistlock

“Many Twistlock customers trust VMware Tanzu as the backbone of their application modernization efforts. With Twistlock's Tanzu integration, our customers now have the automation, efficiency and effectiveness of cloud native cybersecurity at their fingertips for TAS and TKGI workloads.”

John Leon, VP of Business Development & Alliances at Twistlock

How It Works

Twistlock supports any environment, including both Tanzu Application Service (TAS) and Tanzu Kubernetes Grid (TKGI). Built for the world’s enterprises -- Twistlock is engineered to automatically scale up and down as your environment and applications do. For TAS, the platform supports scanning applications and container artifacts during the CI process and continuously monitoring them in Blobstores. Twistlock includes the following as part of our standard architecture.

Twistlock Console serves as the user interface within Twistlock. The graphical user interface (GUI) lets you define policy, configure and control your Twistlock deployment, and view the overall health (from a security perspective) of your container environment

Twistlock Defender enforces the policy defined in Console.

Read the documentation

Let’s talk.

Contact us about Twistlock for Tanzu.

Thank you for your interest!

We will get back to you shortly.

Thank you for your interest!

We will get back to you shortly.