Welcome to the DivvyCloud Docs!

DivvyCloud is a Cloud Security Posture Management (CSPM) platform that provides real-time analysis and automated remediation across leading cloud and container technologies.

For questions about documentation reach out to us [email protected]

Take Me to the Docs!    Release Notes


What is DivvyCloud?

DivvyCloud is a Cloud Security Posture Management (CSPM) platform that provides real-time analysis and automation across leading cloud and container technologies. It protects cloud and container environments from misconfigurations, policy violations, threats, and IAM challenges. DivvyCloud discovers your infrastructure resources across all clouds and distills this information into a normalized database that is used to analyze cloud operations, identify risks, and take action according to user-defined policies and rules—to alert, mitigate, or remediate problems.

What is a CSPM?

A Cloud Security Posture Management (CSPM) platform handles a range of use cases, including compliance assessment, operational monitoring, and DevOps integrations (or in the case of DivvyCloud - DevSecOps integration), incident response, risk identification, and risk visualization.

DivvyCloud also supports cloud security around:

  • Identity, Security, and Compliance
  • Monitoring and Analytics
  • Inventory and Classification
  • Cost Management & Resource Organization (at a peripheral level)

We explore what this means in greater detail on our site here.

What are some of DivvyCloud’s key features?

DivvyCloud provides complete real-time visibility for resources across multi-cloud and container deployments. You get a single unified view of all of your resources to enable your organization to assess security risks, vulnerabilities, and compliance.

DivvyCloud product features include a compliance scorecard, customized reporting, hundreds of out-of-the-box Insights - to understand , in depth, the characteristics of your resources. Common Insights include exposed storage containers, public database instances, and unencrypted volumes.

DivvyCloud Insights can be used to configure the behavior of “Bots” or automated programs to execute your specifically defined actions based on scope, filters, and resources.

With hundreds of filters, you can customize your interaction with the data available for any cloud resource, giving you immeasurable flexibility through a highly extensible platform.

There’s a lot to cover so if you’re interested in a free demo just visit the main website and click the 'Request a Demo' button.


What is required to run DivvyCloud?

DivvyCloud uses several basic components: a database, Redis (a data structure store), three compute nodes (for its workers), a load balancer, and network resources for connecting back to the Internet. It runs on Ubuntu and CentOS variants. And for most enterprise deployments we recommend at least two instances of DivvyCloud, each with at least:

  • 4 cores
  • 8 GB of memory
  • 30 GB root volume

Check out our Product Architecture for additional details.

What Cloud Service Providers are supported?

DivvyCloud includes support for Amazon Web Services—including AWS GovCloud and AWS China, Microsoft Azure—including Azure GovCloud and Azure China, Google Cloud Platform, and Alibaba Cloud.

In addition we also support: Amazon Elastic Container Service for Kubernetes (Amazon
EKS), Azure Kubernetes Service (AKS), Google Kubernetes Engine (GKE), Kubernetes, and OpenStack.

If you don't see your cloud provider listed here reach out to us at [email protected]

What Compliance Standards are supported?

DivvyCloud enables organizations to evaluate compliance with hundreds of out-of-the-box policies that map to compliance and industry standards, including PCI DSS, HIPAA, GDPR, SOC 2, ISO 27001, CIS Benchmarks for AWS, GCP, Azure, Kubernetes, NIST CSF, NIST 800-53, FedRAMP CCM, and CSA CCM.

What third-party integrations does DivvyCloud support?

DivvyCloud includes Integrations with a number of tools for inbound functionality (data aggregation and data collection), and outbound for things like notifications and ticketing. Integrations include: Slack, PagerDuty, ServiceNow, Splunk, Jira, Tenable.io, Microsoft Teams, and Jinja2.

Updated 24 days ago


Suggested Edits are limited on API Reference Pages

You can only suggest edits to Markdown body content, but not to the API spec.