Dynatrace Enhances Application Security with AI-Powered Vulnerability Prioritization
June 17, 2021 at 08:00 am EDT
Share
Dynatrace announced its new Davis® Security Advisor, an AI-powered enhancement to the Dynatrace® Application Security Module that automatically surfaces, prioritizes, and details the software libraries and open-source packages representing the greatest risk to an organization. This empowers DevSecOps teams to make more informed, real-time decisions and address the most critical vulnerabilities first, which allows them to reduce the risk facing their organization with greater confidence and efficiency, leaving more time to drive innovation. According to a Forrester Research report by Principal Analyst Sandy Carielli, “Applications remain a top cause of external breaches, and the prevalence of open source, API, and containers only adds complexity to the security team.”1 This is reinforced by recent Dynatraceresearch, which revealed 89% of CISOs say cloud-native architectures and container runtime environments have made it more difficult to detect and manage software vulnerabilities. The new Davis Security Advisor addresses these challenges. Optimized for cloud-native environments and powered by the Dynatrace AI engine, Davis®, it automatically monitors all software libraries used in preproduction and production, and removes false positives. In addition, Davis Security Advisor aggregates vulnerability data in real-time and prioritizes remediation based on multiple dimensions of risk, including: Number of vulnerabilities; Vulnerability severity; Threat context; Asset exposure; Potential business impact.
Dynatrace, Inc. offers a unified observability and security platform with analytics and automation for dynamic, hybrid, multi-cloud environments. The Companyâs Dynatrace Software Intelligence Platform provides application and micro service monitoring (APM), runtime application security, infrastructure monitoring, digital experience monitoring (DEM), business analytics, and cloud automation. Its product offerings include Applications and Microservices Monitoring, Infrastructure Monitoring, Application Security, Log Management and Analytics, Digital Experience Monitoring, Digital Business Analytics, and Cloud Automation. Its Dynatrace Infrastructure Monitoring provides complete visibility into a customerâs infrastructure layer across public and private clouds and hybrid, multi-cloud environments. It also provides real-time detection and blocking to help protect against injection attacks that exploit critical vulnerabilities, such as Log4Shell.