Safety Detectives: Please share your company background, how you got started, and your mission.
ARMO: ARMO is on a mission to create the future of Kubernetes security. We empower Developers, DevOps, DevSecOps, and IT security teams with the confidence that their Kubernetes deployments are protected and that every workload, container, and microservice is born and remains secure. Based on our patented technology, the ARMO Kubernetes Fabric™ seamlessly infuses security, visibility, and control into every workload from the CI/CD pipeline and throughout its lifecycle. Creating a reinforcing cycle between contextual Kubernetes posture management and active runtime protection enables automatic and continuous shrinking of the cyberattack surface and profoundly improves the environment security resilience.
Leonid Sandler and Shauli Rozen started this company about 2 years ago when they realize that Kubernetes is becoming de-facto the operating system of cloud-native and microservices architectures, but remain a highly vulnerable platform that can be easily breached by hackers.
SD: What is the main service your company offers?
ARMO: We offer a dev to production Kubernetes security platform that covers posture management—scanning and fixing misconfigurations and software vulnerabilities as early as possible at the CI/CD pipeline and runtime protection—protecting workloads and microservices as they run during production
SD: What is something unique that helps you stay ahead of your competition?
ARMO: We have a few unique differentiations—we launched a month ago an open-source tool called Kubescape. it’s the first K8s open-source tool that scans Kubernetes clusters, YAML files, and HELM charts against multiple compliance frameworks including NSA-CISA guidance and MITRE ATT&CK. It detects and alerts on misconfigurations and vulnerabilities that can be exploited.
We protect workloads and microservices during runtime with a unique patent-based technology called ArmoGuard which can enforce a zero-trust mode on any K8s cluster in less than 10 mins with one basic policy. Unlike most runtime protection solutions which are based on rules, AI, or heuristics, our technology is deterministic security-based.
SD: What do you think are the worst cyberthreats today?
ARMO: There are many. For sure one of the worst cybersecurity nightmares is ransomware. It brings companies to their knees.
When it comes to Kubernetes, and the increasing trend of enterprises to move their mission-critical application and sensitive data on it, the biggest threats are data breaches and crypto miners.