Aqua Cloud Security Platform Reviews

I have been testing various solutions to ensure which one is the best fit to protect data, applications, and infrastructure in cloud environments. We are distributors in Turkey, focusing on promoting cost-effective security solutions in the market. When engaging with enterprise clients, particularly in the financial sector such as banks, I emphasize the importance of robust security measures. During customer visits, they express a keen interest in technical support and want demonstrations of software source code management, security support for software chains, and workflow protection.

The most crucial aspect is runtime protection, specifically image scanning before preproduction and deployment. Customers find it invaluable to have the ability to check for vulnerabilities in an image before deployment, similar to a sandbox environment. This feature ensures that customers can identify any potential issues with the image, such as misconfigurations or vulnerabilities, before integrating it into their workloads and infrastructure. In their source pipeline, companies can identify issues before deploying changes. This is crucial because customers prefer resolving any problems or misconfigurations before the deployment process. Software change security, including GSPM Cloud, is a key feature customers seek in their infrastructure.

The solution is used mainly to scan public clouds or containers.

It can be used on demand. For example, when we go through the DevOps lifecycle, containers can be brought in based on demand for some use cases. We often need application onboarding and application changes. The containers do pop up based on the user story that has been defined. Therefore, we have on-demand scanning of those, and we utilize Aqua Security scan to handle that task.

The container scanning is very helpful. It's the prime use case that we have. The scanning protects against container vulnerabilities.

The solution is stable.

From what I understand, the initial setup is simple. 

The solution appears to be scaling in terms of on-demand scanning.

Generally, we are using the product for container security, and we have several items related to containers. For example, one-time protection and zero-day attacks.

I have different kinds of products, and Aqua is not limited to containers only. It's also helping to secure operations. It's a very good product from an environmental perspective. There are actually a lot of things you can do. It's very flexible.

The solution can scale.

It is flexible.

Support is very helpful.

We use this product for all of our network security.

The container security element of this product has been very valuable to our organization.

We did very little with Aqua, basically. We only used Aqua for the image scanning and document scanning and that's it. Since I was working on a DevSecOps project, I was asked to find how complicated it was comparatively, for example, which is more complicated, whether the Aqua or Prisma, and how fast these things could be churned out or integrated into an existing pipeline, or when you create a new pipeline, how fast these things work. I had to experiment with these things.

In our scenario, we were creating pipelines for Infrastructure as Code. Our pipeline would be doing the scanning for all infrastructure code. In that code, if any image is mentioned, we would pick them up, we would scan them, and that's where we'll be using Aqua or Prisma. We have created items with both of those. One of the pipelines which had Aqua would be scanning and finding the vulnerabilities inside the image.

The image security and image scanning were quite easy compared to Prisma. The solution was very user-friendly.

It is easy to set up. 

It's stable.

The documentation was robust.

It's easy to set up. 

The most valuable feature is the on-demand patching. There are times when vulnerabilities don't have available fixes, and Aqua Security allows it to pass the vulnerability in real-time while the fix is being developed.

Their sandboxing service is also really good. When we download an open source tool, we can run it in a sandbox environment and see if there are any back holes or trap doors in the code. However, we don't like that their services are in the US.

Aqua Security lacks a lot in reporting. It provides all the open issues, but no actionable solution is provided. There's no intelligence behind the reporting, so that can be improved. Also, it could be a cheaper solution. However, it is costly because it's a very small market and the first of its kind.

Regarding additional features, we would like to see better log ingestion. For example, if we have an EDR or a SOC, we want the SOC, the cloud and the container security to interact better. That means the cloud should have better ingestion of logs and SOC logs and be able to give more heuristic analysis of security issues rather than just ones and zeros.

The licensing model could be better because it has a scalable container environment. If we're working in a small environment, it is fine, but if we have a large environment, we can't predict the traffic for the day. If the marketing team decides to launch a campaign with high traffic, then we won't have licenses available for all our ports. Therefore, the licensing model needs to be rethought, and we can't have per-port licenses because ports can increase.

We mainly used Aqua Security for container-related Kubernetes security in the CI/CD pipelines to secure the runtime of the Kubernetes clusters. 

The most valuable feature of Aqua Security is the scanner.

We use this solution to secure cloud media applications that are developed for containers and cloud-native services like ETS, AKS and GCP.

I am the only one using this product in our company.

The CSPM product is great at securing our cloud accounts and I really like the runtime protection for containers and functions too. This solution helps us add an extra secure layer to protect applications and the infrastructure.