Try our new research platform with insights from 80,000+ expert users
Lead Security Engineer at a tech company with 10,001+ employees
Real User
Integrated with our existing platform, providing visibility into container image vulnerabilities and access control
Pros and Cons
  • "Aqua Security allowed us to gain visibility into the vulnerabilities that were present in the container images, that were being rolled out, the amount of risk that we were introducing to the platform, and provided us a look into the container environment by introducing access control mechanisms. In addition, when it came to runtime-level policies, we could restrict container access to resources in our environment, such as network-level or other application-level access."

    What is our primary use case?

    We used Aqua Security to address our container security concerns since we were using Docker in production. There was a clear blind spot that needed to be addressed and Aqua Security was able to fill that gap by providing visibility into the container images and the runtime aspect of our container platform.

    How has it helped my organization?

    Based on the rollout, we were able to gain pretty fast visibility into what was going on in our environment and integrate with existing automation and logging solutions we had in place. We were able to create detections and integrate as well with our existing security infra.

    Previously, we had no visibility into the inner platform that was being operated. We didn't know the vulnerabilities the container images introduced, we didn't know how they were behaving at runtime. We were not able to restrict things as far as access goes, as far as the amount of risk we wanted to take with containers. Aqua Security allowed us to gain visibility into the vulnerabilities that were present in the container images, that were being rolled out - the amount of risk that we were introducing to the platform - and provided us a look into the container environment by introducing access control mechanisms. In addition, when it came to runtime-level policies, we could restrict container access to resources in our environment, such as network-level or other application-level access.

    We were able to define policies around containers so we could enforce our rules and restrictions to provide a more secure environment.

    What is most valuable?

    The most important feature was the ability to integrate with the existing platform.

    There were two other aspects to it, the visibility that it provided to us and the enforcement. Once we were able to see what was going on in our platform, through Aqua Security's enforcement policies, we were able to define the constraints or the limits to secure the environment in a better way.

    What needs improvement?

    Since we were able to work with them closely and provide suggestions to them, and they would take action right away, we didn't have much else for them to improve on. 

    However, perhaps the network visibility side could be improved, although I think they've taken action on that, based on the latest releases. They might have already improved the process on the network visibility aspect.

    Buyer's Guide
    Aqua Cloud Security Platform
    November 2024
    Learn what your peers think about Aqua Cloud Security Platform. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
    816,406 professionals have used our research since 2012.

    For how long have I used the solution?

    One to three years.

    What do I think about the stability of the solution?

    We didn't have any issues regarding stability. The only problem was the network monitoring side and it wasn't really a primary goal for us. We had other mechanisms to gain network visibility, so that wasn't an issue that blocked us at any point.

    What do I think about the scalability of the solution?

    We didn't have any problems with scalability. Their architecture provided the means to scale as the enterprise grew, so we were actually expanding the rollout with Aqua Security. The way they architected it, you could actually have a single command-and-control center and have multiple gateways into various environments that rolled up to the command center. That way, even if you had thousands of environments, you could just segment them up and manage them individually through a central location, rather than having a huge blob of things that wouldn't scale properly. The federated, distributed approach they provided let us scale throughout the enterprise.

    How are customer service and support?

    One of the great aspects of Aqua Security was their technical support. They understood the issues we were reporting and they were able to take action right away. Mostly, it was not that things that were breaking, it was more things that we needed for our environment specifically. They were able to understand and take action and get something deployed within a week, which was something we hadn't seen in a lot of vendors in quite a while.

    Which solution did I use previously and why did I switch?

    We weren't using any solution before that was providing us with visibility into our container platforms. We looked at other solutions out there and, based on various aspects, including customer service and technical support, we picked Aqua Security. The technical support and customer service aspects were what led us to pick Aqua Security over the competitors.

    How was the initial setup?

    We were able to deploy, test, and roll it out in a short amount of time. The Aqua Security team was really supportive and were able to address our unique needs right away. They were able to address certain issues that showed up as bugs in their code but they were resolved really fast. They had really great customer service.

    The setup was straightforward compared to their competitors, whose setup failed. The Aqua Security setup went smoothly and we were surprised that it actually went off without any issues. The installation instructions they had provided were straightforward and we didn't require much assistance for the initial rollout. The way they packaged it, it was straightforward to install and manage at the same time. It wasn't complex at all.

    What was our ROI?

    I'm not sure if I can place any numeric values on ROI but, considering that we went from zero security to having full visibility and the ability to create policies to enforce our requirements, I think it was a reasonable investment. Going from zero to, say, 80 to 90 percent capabilities was a good deal.

    What's my experience with pricing, setup cost, and licensing?

    When we chose it there weren't many solution providers so their pricing might have been something that smaller environments, smaller shops, might have balked at. For larger environments, it wasn't a problem because it's a choice between having no security for containers and having security.

    It was a price point that made sense to us, compared to not having a solution that would provide us with the visibility and the enforcement policy aspects, to lock things down. They were reasonable with their pricing. They were pretty down-to-earth about the way they pitched their product and the way they tried to close the deal. They were one of the rare companies that approached the whole valuation in a way that made sense for our company, for our needs, and for their own requirements as well.

    They were a good company to work with, to sum it up. Given the customer service, technical aspects, and pricing, the offer made sense to us and we went forward with them.

    Regarding licensing, they will accommodate your needs if they are able to understand them and they're stated clearly. If your needs are on the visibility side, Aqua Security will be able to accommodate that and not price the full solution. If you need the full solution, they will provide pricing accordingly. Based on the needs and the environment, they will be able to come up with a licensing structure that will accommodate whatever the requirements are.

    Which other solutions did I evaluate?

    There were only a few players in the field, two of them being more equal to each other, Aqua Security and a competitor. But at the time, the competitor's product wouldn't even install properly on our PoC systems, and when we said, "Hey, look, your product isn't installing," they just pointed us to more documentation and said we should download the latest version. So they weren't really offering any technical support or any other type of customer service resources to even resolve the initial hurdle. That was a red flag right off the bat: "Hey, look, this competitor is not willing to work with us to even gain the initial foothold."Aqua Security, on the other hand, helped us even though there was no issue. They spent a lot of time explaining how to properly roll it out, properly configure it, etc.

    What other advice do I have?

    First off, know your environment. Know your rollout. If you're in the planning stage, make sure you design things properly and, once you have that in place, once you know your own infrastructure, then talk with Aqua Security to find the best solution that works for you, whether you need visibility or whether you need enforcement capabilities.

    If you need to integrate the logs which are in your existing infrastructure, it would be quite useful to involve Aqua Security earlier so they can properly address the issues that need to be solved in the infrastructure.

    Work with them earlier in the design phase, if it's still being designed. If it's an existing infrastructure, talk to them but know your environment, for your own sake and to make things easier for Aqua Security to provide a better fitting solution so nobody's time is wasted. You can get more bang for your buck or more value out of the deal if you know your environment.

    The main reasons we chose Aqua Security were the visibility it provided into the container platform and the great customer service. Both aspects: The visibility they provided, compared to the other solutions - their technical abilities were further ahead - and the customer service aspect of it. They were able to work with us closely and address our problems in a prompt manner.

    The solution they provided, from all aspects, was great. They understood our needs, delivered solutions, and remedied any issues that we brought up in a timely manner. They surprised us on many occasions by having things delivered in a couple of days. The scalability of it and the ease of deployment made it a great solution for us.

    Disclosure: PeerSpot contacted the reviewer to collect the review and to validate authenticity. The reviewer was referred by the vendor, but the review is not subject to editing or approval by the vendor.
    PeerSpot user
    Lizeth Zuluaga - PeerSpot reviewer
    Cloud Security Specialist at Telstra
    Real User
    The most advanced solution in the market for container security
    Pros and Cons
    • "Aqua Security helps us to check the vulnerability of image assurance and check for malware."
    • "In the next release, Aqua Security should add the ability to automatically send reports to customers."

    How has it helped my organization?

    Aqua Security allows us to check for vulnerabilities in the CI/CD pipeline, so application teams can remediate issues before going into production.

    What is most valuable?

    Aqua Security helps us to check the vulnerability of image assurance and check for malware.

    What needs improvement?

    In the next release, Aqua Security should add the ability to automatically send reports to customers.

    For how long have I used the solution?

    I've been using Aqua Security for between two to three years.

    What do I think about the stability of the solution?

    Aqua Security's stability is very good.

    What do I think about the scalability of the solution?

    Aqua Security can be scaled up and down depending on your needs.

    How are customer service and support?

    Aqua Security's technical support is usually quite responsive.

    How would you rate customer service and support?

    Positive

    How was the initial setup?

    There were some challenges with the initial setup.

    What about the implementation team?

    We used an in-house team.

    What other advice do I have?

    Aqua Security is the most advanced solution in the market for container security. I would rate it as eight out of ten.

    Which deployment model are you using for this solution?

    Public Cloud
    Disclosure: I am a real user, and this review is based on my own experience and opinions.
    PeerSpot user
    Buyer's Guide
    Aqua Cloud Security Platform
    November 2024
    Learn what your peers think about Aqua Cloud Security Platform. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
    816,406 professionals have used our research since 2012.
    reviewer1699062 - PeerSpot reviewer
    Sales Engineer at a computer software company with 51-200 employees
    Real User
    Top 5
    Provides workload protection and helps identify security misconfigurations, vulnerabilities, and risks
    Pros and Cons
    • "The DTA, which stands for Dynamic Threat Analysis, allows me to analyze Docker images in a sandbox environment before deployment, helping me anticipate risks."
    • "The user interface could be improved, especially in terms of organization and clarity."

    What is our primary use case?

    I'm using it for workload protection. So, in most cases, for protecting containers, verifying Kubernetes configurations, cloud configurations, and identifying security misconfigurations, vulnerabilities, and risks.

    How has it helped my organization?

    I use it to demonstrate to customers because I'm a sales engineer. Many customers want to protect their workloads and applications. 

    For example, when I am using a Docker image with multiple vulnerabilities, I need to know which vulnerabilities are inside. Then I create security policies to allow or deny the deployment of containers from this image and also create a security policy for runtime. This way, when the application is running in the wild, we can guarantee that the security blocks any kind of exploitation.

    What is most valuable?

    There are many features that I really like. For example, the runtime policies are very easy to configure, and they are scalable across all environments. The DTA, which stands for Dynamic Threat Analysis, allows me to analyze Docker images in a sandbox environment before deployment, helping me anticipate risks.

    What needs improvement?

    The user interface could be improved, especially in terms of organization and clarity. Additionally, more comprehensive examples for deployments and feature usage would be helpful.

    Maybe more plugins or something that makes it easier to integrate with CICD pipelines or interact with APIs.

    For how long have I used the solution?

    I've been using it for about three years. I'm using the SaaS version.

    What do I think about the stability of the solution?

    I would rate the stability an eight out of ten.

    What do I think about the scalability of the solution?

    It is a scalable solution. I would rate the scalability a ten out of ten. 

    How are customer service and support?

    The customer service and support are good. 

    How would you rate customer service and support?

    Positive

    How was the initial setup?

    The initial setup was very straightforward.

    What's my experience with pricing, setup cost, and licensing?

    For me, it's a fair price.

    What other advice do I have?

    I would definitely recommend using the solution. It's a very scalable solution with multiple features that help us protect our cloud environment effectively.

    Overall, I would rate the solution a nine out of ten. 

    Which deployment model are you using for this solution?

    Public Cloud
    Disclosure: I am a real user, and this review is based on my own experience and opinions.
    PeerSpot user
    reviewer1699062 - PeerSpot reviewer
    Sales Engineer at a computer software company with 51-200 employees
    Real User
    Top 5
    Cloud native security solution used to secure cloud media applications that offers good performance
    Pros and Cons
    • "The CSPM product is great at securing our cloud accounts and I really like the runtime protection for containers and functions too."
    • "The integrations on CICD could be improved. If Aqua had more plugins or container images to integrate and automate more easily on CICD, it would be better."

    What is our primary use case?

    We use this solution to secure cloud media applications that are developed for containers and cloud-native services like ETS, AKS and GCP.

    I am the only one using this product in our company.

    What is most valuable?

    The CSPM product is great at securing our cloud accounts and I really like the runtime protection for containers and functions too. This solution helps us add an extra secure layer to protect applications and the infrastructure.

    What needs improvement?

    The integrations on CICD could be improved. If Aqua had more plugins or container images to integrate and automate more easily on CICD, it would be better. An integration with WAF would be very good too.

    For how long have I used the solution?

    I have been using this solution for two years. 

    What do I think about the stability of the solution?

    This is a stable solution that offers good performance. 

    What do I think about the scalability of the solution?

    No, this is not a very scalable product. 

    How are customer service and support?

    In general, the support for this solution is good. It could be improved if it catered for customers in different countries to meet their specific demands. 

    How was the initial setup?

    The initial setup is a little bit complex for an on-premises deployment. We needed to have many specialized people on Kubernetes to maintain this deployment and keep it up to date. It is a little bit complex because of Kubernetes, not because of Aqua itself, but Aqua have some features to facilitate the deployment.

    You need three or four people for the deployment. For a small environment, deployment would take two to three hours. For larger environments, it would take longer than that. 

    This is an easy solution to maintain. The main thing is to maintain the databases.

    What's my experience with pricing, setup cost, and licensing?

    The pricing of this solution could be improved. 

    What other advice do I have?

    I would recommend this solution to companies have many cloud-native applications.

    I would rate this solution a seven out of ten. 

    Which deployment model are you using for this solution?

    On-premises
    Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
    PeerSpot user
    reviewer1991016 - PeerSpot reviewer
    Data Scientist at a computer software company with 1,001-5,000 employees
    Real User
    Strong runtime protection but needs more open documentation, better code analysis
    Pros and Cons
    • "The most helpful feature of Aqua Security is Drift Prevention, which is a feature that allows images to be immutable. In addition, one of the main reasons we went with Aqua Security is because it provides strong protection when it comes to runtime security."
    • "Aqua Security could provide more open documentation so that their learning resources can be more easily accessed and searched through online. Right now, a lot of the documentation is closed and not available to the public."

    What is our primary use case?

    We use Aqua Security for securing our container applications, particularly when it comes to the runtime stage.

    There are about five of us from the security side of my company who directly use this solution.

    What is most valuable?

    The most helpful feature of Aqua Security is Drift Prevention, which is a feature that allows images to be immutable. In addition, one of the main reasons we went with Aqua Security is because it provides strong protection when it comes to runtime security.

    What needs improvement?

    Aqua Security could provide more open documentation so that their learning resources can be more easily accessed and searched through online. Right now, a lot of the documentation is closed and not available to the public. I would be much happier if they chose to share more documentation and resources when it comes to their knowledge base.

    As for extra features that I would like to see, source code scanning is on the top of my list. To be clear, I don't mean code scanning in terms of source code composition, but rather I would like to see more in the way of code analysis that tells you whether the code you're writing adheres to the current best practices or not.

    For how long have I used the solution?

    I have been using Aqua Security for about a year now.

    What do I think about the stability of the solution?

    In terms of stability, I would give Aqua Security 4/5 stars.

    What do I think about the scalability of the solution?

    I would give the scalability a 5/5 stars because it basically scales by itself. It's just the licensing that restricts your usage.

    How are customer service and support?

    The technical support is sometimes quick and responsive, but at other times it may take a bit longer to get assistance.

    How would you rate customer service and support?

    Neutral

    Which solution did I use previously and why did I switch?

    Aqua Security is one of the first solutions I have used for container security, however I have also taken a look at ACS from Red Hat, Snyk, and Prisma from Palo Alto.

    We went with Aqua Security mainly because we believe they offer the strongest protection in terms of runtime security.

    How was the initial setup?

    The setup was a little complex but not too complicated. The difficulty level lies somewhere in the middle between easy and hard.

    What about the implementation team?

    We implemented Aqua Security mostly by ourselves, but we also took advice from a consultant. Our implementation strategy mainly involved the use of Java forms with manifest files, then we slowly deployed one component at a time.

    In all, the basic deployment took just a few hours, but there is always more work to be done afterwards in terms of configuration, integrations, and properly getting started with it in our environment. It's hard to put a number on the hours required, but it probably took a few days to get everything configured and ready to be used.

    What's my experience with pricing, setup cost, and licensing?

    Dealing with licensing costs isn't my responsibility, but I know that the licenses don't depend on the number of users, but instead are priced according to your workload.

    What other advice do I have?

    I would rate Aqua Security a seven out of ten.

    Which deployment model are you using for this solution?

    Public Cloud

    If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?

    Amazon Web Services (AWS)
    Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
    PeerSpot user
    Senior Principal Consultant Cloud/DevOps/ML/Kubernetes at Opticca
    Real User
    Good technical support and new releases improve usability issues
    Pros and Cons
    • "We use Aqua Security for the container security features."
    • "I would like Aqua Security to look into is the development of a web security portal."

    What is our primary use case?

    We use Aqua Security for the container security features.

    How has it helped my organization?

    We use Aqua Security across the software development lifecycle.

    What is most valuable?

    We find the Docker and Kubernetes support for container security most valuable.

    What needs improvement?

    I would like Aqua Security to look into is the development of a web security portal. That is what I want them to look into next.

    For how long have I used the solution?

    We have been using the solution for two and a half years.

    What do I think about the scalability of the solution?

    We have thousands of dedicated users. They are pharmacists, healthcare providers, doctors, insurance companies, etc. They are the end users. On our staff are the administrators.

    How are customer service and technical support?

    The technical support is good. Whenever we open a ticket, the people are quite helpful about it.

    How was the initial setup?

    Setup was initially complex before the 3.9 version. We were on version 3.7 and it has been a challenge compared to version 3.11. Deployment was done once or twice in a week.

    We are using an in-house regiment. For deployment, we are using automation.

    What about the implementation team?

    We used a reseller to provide quality. He's the guy who we bought the license from initially. He managed the implementation.

    What other advice do I have?

    I would rate this product between 7 and 8 out of 10 for container security features.

    Disclosure: I am a real user, and this review is based on my own experience and opinions.
    PeerSpot user
    Technology Director at IPV Network
    Real User
    Has solid security but the setup is complex
    Pros and Cons
    • "The most valuable feature is the security."
    • "Since we are working from home, we would like to have the proper training for Aqua."

    What is most valuable?

    The most valuable feature is the security. Our clientele cares about the speed of the integration especially if they're doing digital transformation. If you compare it to other container security Aqua is not as caught up in terms of the migration. 

    What needs improvement?

    We work with another Philippine company that will be providing local support, but our company has more traction with the executives of our clientele. We'd rather have the same skillset or improve our skillsets to be trained by our Aqua counterpart. We haven't done any trainings apart from a webinar. Since we are working from home, we would like to have the proper training for Aqua.

    For how long have I used the solution?

    I have been using Aqua Security for two years. 

    What do I think about the scalability of the solution?

    Our client has around 5,000 users. 

    How are customer service and technical support?

    I'm the person who manages technical support. I have contacted the team in Singapore. They're pretty good. The person who has been helping us is very knowledgable. 

    Which solution did I use previously and why did I switch?

    We previously used Alcide. Aqua gives us more features and is more solid in terms of security. Aqua is more of a market share leader. There is more of a technology advantage. 

    How was the initial setup?

    The initial setup was straightforward. We spent around 12 days on the planning during our POC. Planning, testing, and mitigation took around 10-12 days.

    What's my experience with pricing, setup cost, and licensing?

    Aqua is a bit expensive so you have to really justify going for it or not. 

    What other advice do I have?

    The deployment should be improved. After this pandemic, half of the workforce has been working from so we need to provide our clients a solution that will have an easier deployment. 

    I would rate it a seven out of ten. 

    Which deployment model are you using for this solution?

    Private Cloud

    If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?

    Microsoft Azure
    Disclosure: My company has a business relationship with this vendor other than being a customer: reseller
    PeerSpot user
    reviewer1078902 - PeerSpot reviewer
    Security manager at a tech services company with 11-50 employees
    Real User
    Solves a lot o problems and is easy to use and manage
    Pros and Cons
    • "The most valuable features are that it's easy to use and manage."
    • "They want to release improvements to their product to work with other servers because now there are more focused on the Kubernetes environment. They need to improve the normal servers. I would like to have more options."

    What is our primary use case?

    Our primary use case is to sequelize all of the ACD and to review the images. 

    What is most valuable?

    The most valuable features are that it's easy to use and manage.

    What needs improvement?

    They want to release improvements to their product to work with other servers because now there are more focused on the Kubernetes environment. They need to improve the normal servers. I would like to have more options. 

    What do I think about the stability of the solution?

    It is stable.

    What do I think about the scalability of the solution?

    Scalability is pretty good. It's easy to scale. 

    In my company, three or four people use this product. 

    How are customer service and technical support?

    They aren't so good. They don't always follow up with the problems. Support needs improvement, they should be more proactive. They're not always as helpful as we want them to be. 

    How was the initial setup?

    The initial setup was straightforward. The first time you deploy you, you need support but after that, it's easy to understand the documentation that they provide. After two or three times it's easy. 

    It takes around one week to get all of the environments in place but to do a PoC is only two days. 

    What other advice do I have?

    I would rate it a nine out of ten. 

    My advice would be to go for it. This solution solves a lot of problems. I would recommend it. 

    Aqua focuses more on Kubernetes and Docker but they don't have the option to have an environment with other servers so I would like for them to provide more options. There should be more integration with the cloud. 

    Which deployment model are you using for this solution?

    Private Cloud

    If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?

    Amazon Web Services (AWS)
    Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
    PeerSpot user
    Buyer's Guide
    Download our free Aqua Cloud Security Platform Report and get advice and tips from experienced pros sharing their opinions.
    Updated: November 2024
    Buyer's Guide
    Download our free Aqua Cloud Security Platform Report and get advice and tips from experienced pros sharing their opinions.