In early 2024, Dynatrace acquired Runecast, an innovative solution in the Cloud Native Application Protection Platform (CNAPP) space. This strategic move brought powerful capabilities to the Dynatrace platform, including Kubernetes Security Posture Management (KSPM), which allows teams to detect misconfigurations and compliance risks in their Kubernetes environments.
Expand security posture management across cloud and VMware
Building on this success, Dynatrace continues to evolve its platform to support broader Cloud Security Posture Management (CSPM) and VMware Security Posture Management (VSPM) use cases. While platform-native Security Posture Management capabilities are on the horizon, you don’t have to wait to benefit from these insights. Thanks to the tight integration with Runecast Analyzer, Dynatrace users can already access robust CSPM and VSPM functionality today, allowing them to:
Continuously assess their cloud and VMware environments for misconfiguration
Organizations operating in regulated industries, such as finance, healthcare, and government, must demonstrate ongoing compliance with standards like CIS, PCI-DSS, NIST, DORA, and DISA STIG. With Runecast Analyzer integrated into Dynatrace:
- Compliance checks are automated and performed on a daily basis, rather than annually, with cumbersome manual effort.
- Findings are mapped to specific controls, and affected resources can be easily identified.
- Audit readiness becomes a proactive, not reactive, process.
Proactively reduce risks
Misconfigurations are one of the leading causes of cloud breaches. CSPM and VSPM help teams:
- Detect insecure configurations in cloud services.
- Identify vulnerabilities in VMware environments before they’re exploited.
- Prioritize remediation based on real-time impact and exposure.
Bridge security and operations
Security teams often struggle to communicate risk in a way that’s actionable for DevOps and platform teams. This integration allows shared visibility through Dashboards, Notebooks, and Workflows.
Gain hybrid and multicloud visibility
Modern enterprises operate across AWS, Azure, GCP, and on-premises VMware. Runecast Analyzer supports all these environments, and Dynatrace delivers insights into them together on a single platform, ensuring consistent posture management across the entire stack.
Get Started with Runecast Analyzer and Dynatrace
Dynatrace makes it easy to ingest and analyze compliance findings from Runecast Analyzer. Here’s a quick overview of the setup process:
1. Deploy Runecast Analyzer
- Deploy the Runecast Analyzer Virtual Appliance in your environment (on-premises or cloud).
- Connect the virtual appliance to your cloud accounts (AWS, Azure, GCP) and VMware infrastructure.
2. Enable compliance scanning
- Choose from a wide range of compliance profiles.
- Schedule regular assessments or run them on demand.
3. Ingest findings into Dynatrace
- Use the Dynatrace Security Events API to ingest findings from Runecast.
- Findings are enriched with Dynatrace context and stored in Grail™ data lakehouse for unified analysis.
4. Visualize and act
- Explore findings using Dashboards, Notebooks, and Security Investigator.
- Automate responses with Dynatrace Workflows—trigger alerts, create tickets, or initiate remediation.
Looking ahead
As Dynatrace continues to enhance its platform, you can look forward to even more seamless and native capabilities for CSPM and VSPM. In the meantime, the current integration with Runecast Analyzer ensures that your organization can start strengthening its security posture and compliance coverage within the Dynatrace platform today.
[/CTA]
___
© 2005 Dynatrace LLC
Dynatrace and the Dynatrace logo, are trademarks of the Dynatrace, Inc. group of companies. All other trademarks are the property of their respective owners.
Looking for answers?
Start a new discussion or ask for help in our Q&A forum.
Go to forum