DivvyCloud (by Rapid7) is a Cloud Security Posture Management (CSPM) platform that provides real-time analysis and automation across leading cloud and container technologies. It protects cloud and container environments from misconfigurations, policy violations, threats, and IAM challenges. DivvyCloud discovers your infrastructure resources across all clouds and distills this information into a normalized database that is used to analyze cloud operations, identify risks, and take action—according to user-defined policies and rules—to alert, mitigate, or remediate problems.
A Cloud Security Posture Management platform handles a range of use cases, including compliance assessment, operational monitoring, DevOps integrations (or in the case of DivvyCloud - DevSecOps integration), incident response, risk identification, and risk visualization.
DivvyCloud also supports cloud security around the following:
- Identity, Security, and Compliance
- Monitoring and Analytics
- Inventory and Classification
- Cost Management & Resource Organization (at a peripheral level)
We explore what this means in greater detail on our site here.
DivvyCloud provides complete real-time visibility for resources across multi-cloud and container deployments. You get a single unified view of all of your resources to enable your organization to assess security risks, vulnerabilities, and compliance.
DivvyCloud product features include a compliance scorecard, customized reporting, and hundreds of out-of-the-box Insights in order to understand, in depth, the characteristics of your resources. Common Insights include exposed storage containers, public database instances, and unencrypted volumes.
With hundreds of filters, you can customize your interaction with the data available for any cloud resource, giving you immeasurable flexibility through a highly extensible platform.
There’s a lot to cover, so if you’re interested in a free demo, visit the main website and click the "Request a Demo" button.
In addition to our product documentation, the DivvyCloud website has a wealth of information including:
- Details about our Key Capabilities
- A dedicated section of Resources to read articles, case studies, blogs, and our latest white papers
- A summary review of pricing details
- Information on how to Become a Partner
DivvyCloud uses several basic components: a database, Redis (a data-structure store), three compute nodes (for its workers), a load balancer, and network resources for connecting back to the internet. It runs on Ubuntu and CentOS variants. And for most enterprise deployments we recommend at least two instances of DivvyCloud, each with at least the following:
- 4 cores
- 8 GB of memory
- 30 GB root volume
Check out our Product Architecture for additional details.
DivvyCloud includes support for Amazon Web Services, including AWS GovCloud and AWS China, and Microsoft Azure, including Azure GovCloud, Azure China, Google Cloud Platform, and Alibaba Cloud.
In addition, we also support Amazon Elastic Container Service for Kubernetes (Amazon
EKS), Azure Kubernetes Service (AKS), Google Kubernetes Engine (GKE), and Kubernetes.
If you don't see your cloud provider listed here, reach out to us at [email protected].
DivvyCloud enables organizations to evaluate compliance with hundreds of out-of-the-box policies that map to compliance and industry standards, including PCI DSS, HIPAA, GDPR, SOC 2, ISO 27001, CIS Benchmarks for AWS, GCP, Azure, Kubernetes, NIST CSF, NIST 800-53, FedRAMP CCM, and CSA CCM. Click to learn more about our out-of-the-box Compliance Packs.
DivvyCloud includes Integrations with a number of tools for inbound functionality (data aggregation and data collection), and outbound for things like notifications and ticketing. Integrations include InsightIDR, Slack, PagerDuty, ServiceNow, Splunk, Jira, Tenable.io, Microsoft Teams, and Jinja2.
Updated 15 days ago