Twistlock Releases Active Threat Protection for Serverless Functions

Tasks running in AWS Lambda, Google Cloud Functions and Azure Functions now secured by Twistlock’s leading cloud native cybersecurity platform

PORTLAND, OR, June 19, 2018 // Twistlock, the leading provider of container and cloud native cybersecurity solutions, today announced the addition of serverless runtime defense to the Twistlock platform.  With this new functionality, companies can extend Twistlock’s automated, whitelist based threat protection to serverless functions running in AWS Lambda and other leading serverless platforms.

DevOps Dozen 2023

This new capability builds upon Twistlock’s release of vulnerability scanning for serverless functions in July 2017, and brings Twistlock’s serverless capabilities to parity with the full lifecycle, full stack protection the platform currently offers for containers and virtual machines. Customers can now centralize their serverless, container, and VM security in a single platform that provides developers, devops, and security teams alike the visibility and controls needed to deliver cloud native applications securely.

“Serverless provides its own unique advantages relative to running an app in a container environment,” said John Morello, Twistlock Chief Technology Officer. “What we see in the real world is many customers running heterogeneous stacks – with some workloads in containers, some in VMs, and some in serverless functions.  AWS Lambda and other serverless frameworks are well suited to running discrete tasks at scale with minimal developer overhead. With our newly released runtime defense for serverless capabilities, these teams can recognize the same protection in their serverless environment that they enjoy in the rest of their cloud native stack.”

As more enterprises embrace cloud native computing to reduce operating costs and increase deployment agility, serverless has emerged as a rapidly-growing deployment method that allows rapid scale without the traditional management overhead.

According to Gartner in the April 2018 report An I&O Leader’s Guide to Serverless Computing, “More than 20% of global enterprises will have deployed serverless computing technologies by 2020, which is an increase from fewer than 5% today.” Gartner, An I&O Leader’s Guide to Serverless Computing

With this addition, Twistlock continues to enhance its industry leading cloud native security platform. As the first platform for container security, the first platform for serverless security, and the first platform for service mesh security, Twistlock has helped hundreds of customers worldwide securely adopt cloud native technology and DevSecOps practices. Serverless runtime defense is included in the Twistlock platform, and is available to Twistlock customers today. For more information, visit

More Resources

Get a demo of Twistlock’s cloud native cybersecurity platform

Learn more about Twistlock’s serverless runtime defense

Read Twistlock Labs’ overview of serverless security

About Twistlock

Twistlock is the leading provider of container and cloud native cybersecurity solutions for the modern enterprise. From precise, actionable vulnerability management to automatically deployed runtime protection and firewalls, Twistlock protects applications across the development lifecycle and into production. Purpose built for containers, serverless, and other leading technologies – Twistlock gives developers the speed they want, and CISOs the controls they need. For more information, please visit