Aqua Cloud Native Security Platform vs. Lacework

Excellent tool for identifying Cloud security issues such as vulnerabilities or misconfigurations. The complaince scanning ability is perfect for enterprise organization to maintain complaince based off various complaince programs.

Incentivized

Lacework is well suited for behavioral analysis. One thing to consider thought is in the early stages there will be quite a bit of noise generated by Lacework. There will be a higher volume alerts generated initially - until a good baseline is generated. Overall Lacework is good with alert handling - integration with Slack is good.

Incentivized

• seamless integration with GitHub, Jfrog, etc
• Easy configuration of security policy
• detailed instructions regarding finding of Vulnerabilities

Incentivized

• Easy to set-up the agent in cloud workloads.
• Easy integration with ticketing and messaging tools.
• Detailed visibility of all our container workloads across multiple accounts.

Incentivized

• The UI/UX of the Aqua platform has several issues, especially with the sign up/in flow, authentication, alerts and display of results
• Missing a few prominent notification channels for alerts such as Datadog, Webhooks
• Lacks complete granularity in RBAC with the ability to set permissions based on the cloud
• Some parts of the cocumentation for connecting an Oracle Cloud account is not up to update or clear

Incentivized

• UI can be complicated and hard to know where to click to find information.
• Ability to create and manage cases or tickets from events that trigger.

The UI and UX of the platform requires some work since the platform is not for all screen sizes and the experience with certain features such as authentication and creating alerts is not great. The session times out while performing an action and having to repeat the entire action once again, which is not a great experience. Adding notification channels while creating the alerts is not seamless. But the platform has good UX with some great documentation for integrations along with the ability to customise dashboards.

Incentivized

Aqua Cloud Native Security Platform is easy to implement and manage compare the Dome9.

Incentivized

Compared to Sysdig Falco (the free open-source IDS), Lacework helps security teams by providing actionable alerts and a user-friendly interface that gives you an overview of all workloads being monitored, and detailed insights into these workloads if needed. Falco requires you to build your own integration and interface around it, including a mechanism to whitelist certain alerts. This made it harder for the security team to focus their time on potential intrusions.

Incentivized

• ROI is high with our Aqua project.

Incentivized

• Being a FinTech company, financial institutions who partner with us want to know that we are appropriately maintaining a Security, Risk and Compliance program that maintains a level of comfort for their vendor management. Lacework gives us the ability to monitor and maintain a level of security for our infrastructure that puts our partners at ease, reduces the revenue cycle for new partners and opens doors to the future.