ARMO

ARMO’s mission is to provide comprehensive security for cloud-native environments. The company aims to secure every component of these environments, including workloads, containers, and microservices, from development to production. ARMO’s goal is to create the first end-to-end open-source Kubernetes security platform that is developer-focused and trusted by security professionals. This involves making Kubernetes security accessible, transparent, and community-driven.

ARMO specializes in Kubernetes security, offering products for developers that integrate directly into the CI/CD pipeline. The company is the creator of Kubescape, a widely adopted open-source Kubernetes security project. ARMO’s platform is designed to reduce the high volume of security alerts by focusing on the most critical and exploitable threats. The company has a positive market reputation, with users praising its ease of setup and its ability to provide actionable security insights for Kubernetes clusters. Customers have noted the platform’s effectiveness in identifying misconfigurations and visualizing potential attack paths.

Offerings, Capabilities, and Integrations

ARMO is a Kubernetes security company that provides solutions to secure cloud-native environments. Its offerings are centered around providing visibility, control, and security for workloads and applications running in Kubernetes. ARMO’s key capability lies in its ability to provide runtime security and continuous monitoring of Kubernetes clusters. This is achieved through the use of eBPF technology, which allows for deep insights into runtime behavior without the need for sidecars. This focus on runtime security and a Kubernetes-native approach gives ARMO a competitive edge by enabling it to detect and respond to threats in real-time. The company’s reputation is bolstered by its creation and maintenance of Kubescape, a popular open-source Kubernetes security project that is part of the Cloud Native Computing Foundation (CNCF). ARMO integrates with various development tools and CI/CD pipelines, as well as with platforms like Slack for enhanced collaboration and notification of security issues.

Products and Services

ARMO’s primary commercial offering is the ARMO Platform, an enterprise-grade security solution built upon the open-source Kubescape project. The platform provides a comprehensive suite of tools for Kubernetes security and management.

• Kubescape: This is ARMO’s flagship open-source project and the foundation of its commercial platform. Kubescape is a security tool for Kubernetes that provides risk analysis, security compliance, and misconfiguration scanning.
• ARMO Platform: This enterprise offering extends the capabilities of Kubescape with features designed for larger organizations. It includes a centralized dashboard for managing multiple clusters, advanced security features, and enterprise-level support. Key features of the ARMO Platform include:
  • Kubernetes Security Posture Management (KSPM): This feature helps organizations to assess and improve the security posture of their Kubernetes clusters.
  • Cloud Security Posture Management (CSPM): ARMO provides agentless scanning for cloud visibility and risk assessment.
  • Application Security Posture Management (ASPM): The platform offers capabilities to secure applications running on Kubernetes.
  • Cloud Application Detection and Response (CADR): This capability uses runtime insights to detect and respond to threats against cloud applications. It provides a holistic view of threats from the code to the cloud API.
  • Vulnerability Management: The platform identifies and prioritizes vulnerabilities based on runtime context and threat intelligence, aiming to reduce alert fatigue.
  • RBAC Visualizer: This tool provides an interactive visualization of Kubernetes Role-Based Access Control (RBAC) permissions to help identify overly permissive roles and other security risks.
  • Network Policy Generation: ARMO can automatically generate network policies based on observed workload behavior to restrict communication and enhance security.

Target Customers

ARMO’s target customers are primarily organizations that use Kubernetes to deploy and manage their applications. This includes companies of various sizes, from small businesses to large enterprises. The primary users within these organizations are DevOps engineers, DevSecOps teams, and security professionals. These teams benefit from ARMO’s products by gaining the ability to secure their Kubernetes deployments throughout the entire lifecycle, from development to production. ARMO helps these customers to automate security and compliance checks, reduce the attack surface, and respond to threats in real-time, ultimately allowing them to build and deploy applications more securely and confidently.

Cloud Integrations and Marketplaces

ARMO offers cloud integrations and is present on cloud marketplaces to extend the functionality of its security platform.

• AWS Integration: ARMO’s platform integrates with Amazon Web Services to provide cloud security posture management. This integration allows for automated scanning of AWS environments to detect misconfigurations and security risks against compliance frameworks such as CIS, FedRAMP, HIPAA, and others. The connection to an AWS account is facilitated through CloudFormation.
• CI/CD Integrations: The ARMO Platform supports integrations with CI/CD tools.

ARMO is available on the following cloud marketplaces:

• AWS Marketplace: The ARMO Platform is available on the AWS Marketplace. This allows customers to purchase and deploy the platform using their existing AWS accounts and billing. The platform provides runtime-powered, open-source-first cloud runtime security, continuously monitoring and responding to threats with risk context.
• Google Cloud Marketplace: A search for “ARMO” on the Google Cloud Marketplace does not yield any direct results for the ARMO security company.
• Microsoft Azure Marketplace: A search for “ARMO” on the Microsoft Azure Marketplace does not show any listings for the company. However, a similarly named company, “Armor,” offers a Managed Detection & Response service that integrates with Microsoft Sentinel and Microsoft Defender.

Key People

• CEO & Co-founder: Shauli Rozen
• CTO & Co-founder: Ben Hirschberg
• COO: Merav Zviran
• VP R&D: Rotem Refael
• VP Marketing & Business Development: Jonathan Kaftzan
• VP Product: Yossi Ben Naim
• Chairman: Abe Peled
• Board Member, Pitango: Ayal Itzkovitz
• Board Member, Pitango: Yair Cassuto
• Board Member, Hyperwise Ventures: Nathan Shuchami
• Board Member: Leonid Sandler
• Board Member: Amir Aharoni

Key Facts

• Headquarters Location: Tel Aviv, Israel.
• Number of Employees: 51-200.
• Annual Revenue: $13.5M.
• Parent Company: None.
• Subsidiary Companies: None.
• Publicly Listed: No.

Analyst Recognition

Gartner has recognized ARMO in its analyses of the technology landscape.

• Gartner: ARMO was named a “Cool Vendor” in the Gartner “Cool Vendors in Platform Engineering for Scaling Application Security Practices” report in July 2023.

ARMO is not mentioned in available analyst recognition reports from Forrester, IDC, or Everest Group.