Hero image space
Product screenshot

StackRox Prevent
Centralized governance for container deployments


StackRox Prevent synthesizes data across all your platforms and tools to provide a central point of governance for your container deployments. It enables you to profile your container risk, minimize your attack surface, and simplify governance.

CENTRALIZED SECURITY CONTEXT

Drive remediation and risk acceptance decisions with a holistic view of your attack surface and risk posture. Immediately understand the source and location of any policy violations through a comprehensive dashboard view.

SECURITY RISK IDENTIFICATION

Easily identify security risks spanning various parts of the container stack through policy enforcement built around a rich set of environmental metadata (image vulnerabilities, container configurations, host and network configurations).

RISK QUANTIFICATION AND BENCHMARKING

Generate comprehensive reports in minutes that quantify and benchmark risk. Leverage deep orchestrator integration to establish risk awareness at the service and cluster levels.

IMAGE VULNERABILITY DATA

Integrate with leading commercial and open source vulnerability scanners to harden container images.

STREAMLINED REMEDIATION

Accelerate risk mitigation with streamlined distribution of actionable information to DevOps teams using integrations with familiar workflow tools (Jira, Slack, email).

ASSESS HOST, CONTAINER, AND ORCHESTRATOR CONFIGURATIONS

Assess whether your container deployment configurations adhere to compliance standards and industry best practices, or set your own custom policies.

CONTAINER DISCOVERY

Discover and enumerate containers at scale based on rich sets of container metadata.

MULTI-PLATFORM GOVERNANCE

Maintain governance over application components and their configurations, and enforce security policies across multiple container platforms.

AUTOMATED CONFIGURATION CHECKING

Automatically run periodic or on-demand container configuration checks.

platform architecture

Container Platforms

Google GKE Google Kubernetes Engine (GKE)
Docker Enterprise editionDocker Enterprise Edition
openshift Red Hat OpenShift

Registries

Docker Hub Docker Hub
Docker Trusted RegistryDocker Trusted Registry (DTR)
Tenable Tenable
Quay Quay

Vulnerability Scanners

Docker Security Scanning Docker Security Scanning
TenableTenable
Quay Quay
CoreOS Clair CoreOS Clair

Workflow plugins

Jira Jira
Slack Slack
email Email

Learn more about how StackRox Prevent enables your container governance efforts.

Request a free security assessment