Case Study: Demisto achieves end-to-end container security for its AWS pipeline with Aqua Security

Security orchestration leader Demisto secures its AWS-based container pipeline and SaaS offering with Aqua Security

Demisto, a leading SOAR (Security Orchestration, Automation, and Response) platform, needed to secure its AWS-based container development pipeline and hosted SaaS offering. The engineering team required a way to vet Docker images for vulnerabilities, embedded secrets, malware and misconfigurations, ensure only approved images reach production, and receive alerts for newly discovered risks. To meet those requirements, Demisto selected Aqua Security’s Aqua Container Security Platform.

Aqua Security integrated into Demisto’s CI/CD pipeline and AWS environment (ECR/ECS), automatically scanning builds and registries, enforcing image-assurance policies that block images with high-severity vulnerabilities, and applying runtime whitelisting and real-time monitoring. As a result, Demisto gained end-to-end visibility and enforcement from image build to deployment, continuously applies security and compliance best practices, prevents unauthorized container activity, and identifies issues earlier for faster remediation—ensuring risky images cannot be deployed to production.

Demisto