To manage and maintain container security, you will need a product in a category called "Cloud Workload Protection Platform" (CWPP). The best know are Twistlock (recently acquired by Palo Alto Networks and integrated in Prisma Cloud), Aqua and Sysdig. Ideally, you should also integrate your CWPP with a good CI/CD development pipeline (secure pipeline configuration, code and Git history analysis, security policy enforcement).