Aqua Blog

Amir Jerbi

Amir Jerbi
Amir is the Co-Founder and CTO at Aqua. Amir has 20 years of security software experience in technical leadership positions. Amir co-founded Aqua with the vision of creating a security solution that will be simpler and lighter than traditional security products. Prior to Aqua, he was a Chief Architect at CA Technologies, in charge of the host based security product line, building enterprise grade security products for Global 1000 companies. Amir has 14 cloud and virtual security patents under his belt. In his free time, Amir enjoys backpacking in exotic places.
How to Get Started with Containerization

How to Get Started with Containerization

This article was originally published in infoworld.com

As part of my job, I regularly meet with devops people to discuss their container strategy. Most of the time, the people I talk to are eager to reap the many benefits containers offer, but they are new to working with them. They might have a container-based system …

Continue reading ›
Securing Containers on OpenShift

Securing Containers on OpenShift

Red Hat OpenShift container platform is one of the popular and mature platforms for developing and managing container deployments. While it has many built-in security features, Aqua provides an additional layer of security both in development as well as for protecting containerized applications in runtime.

Continue reading ›
Container Security Automation: Keeping Up With The DevOps Crowd

Container Security Automation: Keeping Up With The DevOps Crowd

This article was originally published in InfoWorld.com, New Tech Forum

From development to deployment, one of the most distinctive traits of using containers is speed. The development cycle is not only rapid, but divided into multiple, bite-sized components that are constantly updated. At runtime, frequent updates …

Continue reading ›
Network Nano-Segmentation for Container Security

Network Nano-Segmentation for Container Security

Network segmentation is not a new concept in security. It’s been around for a while and is considered one of the most effective methods of limiting the “blast radius”, i.e., preventing extensive damage in case of an attack or a breach by limiting the attacker to a sealed-off segment of the network. In the era of APTs …

Continue reading ›
The Challenges of Docker Secrets Management

The Challenges of Docker Secrets Management

In our many conversations with customers, Docker secrets management has come up as a particularly thorny issue that seemed to lack an elegant, cross-platform solution for container environments. Not a new issue in the enterprise space, especially as pertains to large-scale DevOps environments, the challenges of …

Continue reading ›
Cisco CloudCenter: Docker Privilege Escalation Vulnerability Explained

Cisco CloudCenter: Docker Privilege Escalation Vulnerability Explained

Cisco announced a few days ago that it discovered and fixed a critical vulnerability in its CloudCenter Orchestrator, whereby a misconfiguration caused the Docker Engine management port to be reachable outside of the CloudCenter Orchestrator system. An attacker could exploit this vulnerability by loading Docker …

Continue reading ›
10 Key Security Terms DevOps Need to Know

10 Key Security Terms DevOps Need to Know

It’s no secret that DevOps and IT security, like oil and water, are hard to mix. After all, DevOps is all about going fast, while security is all about proceeding carefully. However, both DevOps and security serve a higher authority—the business—and the business will be served only if DevOps and security learn to get …

Continue reading ›
Image Vulnerability Scanning in Azure Container Registry

Image Vulnerability Scanning in Azure Container Registry

Last month we announced support for Windows containers and automating image scanning as a step in Microsoft VSTS. I'm happy to announce that Aqua supports the new (yet to be officially released) Azure Container Registry, or ACR.

Continue reading ›
Aqua Now Supports Windows Containers and Visual Studio Team Services

Aqua Now Supports Windows Containers and Visual Studio Team Services

Last month we attended Microsoft Ignite, the biggest event for Microsoft professionals that covers everything in Microsoft’s vast enterprise infrastructure, applications and cloud services portfolio. During that same week we announced our Series A funding by Microsoft Ventures.

Continue reading ›
Container Security Best Practices for Conscientious DevOps

Container Security Best Practices for Conscientious DevOps

As part of the DevOps team, I’m sure you’re already a fan of containers; the way they’ve eliminated the pain of those environment-related configuration challenges, and reduced your infrastructure requirements by being so much more lightweight than full-blown VMs. But the very thing that makes them so lightweight – …

Continue reading ›
Advanced Threat Mitigation for Containers in Runtime

Advanced Threat Mitigation for Containers in Runtime

Seems like only yesterday we announced Aqua CSP v1.1, but with customer requirements flowing in and our commitment to coming out with a new version every couple of months, Aqua 1.2 is out. This version is packed with dozens of new features and UI improvements, but I wanted to highlight the key new features.

Continue reading ›